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Preface 


This text is intended for a one- or two-semester undergraduate course in 
abstract algebra. Traditionally, these courses have covered the theoretical 
aspects of groups, rings, and fields. However, with the development of 
computing in the last several decades, applications that involve abstract 
algebra and discrete mathematics have become increasingly important, and 
many science, engineering, and computer science students are now electing 
to minor in mathematics. Though theory still occupies a central role in the 
subject of abstract algebra and no student should go through such a course 
without a good notion of what a proof is, the importance of applications 
such as coding theory and cryptography has grown significantly. 

Until recently most abstract algebra texts included few if any applications. 
However, one of the major problems in teaching an abstract algebra course 
is that for many students it is their first encounter with an environment that 
requires them to do rigorous proofs. Such students often find it hard to see 
the use of learning to prove theorems and propositions; applied examples 
help the instructor provide motivation. 

This text contains more material than can possibly be covered in a single 
semester. Certainly there is adequate material for a two-semester course, and 
perhaps more; however, for a one-semester course it would be quite easy to 
omit selected chapters and still have a useful text. The order of presentation 
of topics is standard: groups, then rings, and finally fields. Emphasis can be 
placed either on theory or on applications. A typical one-semester course 
might cover groups and rings while briefly touching on field theory, using 
Chapters 1 through 6, 9, 10, 11, 13 (the first part), 16, 17, 18 (the first 
part), 20, and 21. Parts of these chapters could be deleted and applications 
substituted according to the interests of the students and the instructor. A 
two-semester course emphasizing theory might cover Chapters 1 through 6, 
9, 10, 11, 13 through 18, 20, 21, 22 (the first part), and 23. On the other 
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hand, if applications are to be emphasized, the course might cover Chapters 
1 through 14, and 16 through 22. In an applied course, some of the more 
theoretical results could be assumed or omitted. A chapter dependency chart 
appears below. (A broken line indicates a partial dependency.) 


Chapters 1-6 


----| Chapter 8 Chapter 9 Chapter 7 


Chapter 10 


Chapter 11 


-4+ Chapter 13 Chapter 16 Chapter 12 Chapter 14 


Chapter 17 Chapter 15 


Chapter 21 


! Chapter 18 Chapter 20 Chapter 19 


ap eee ee eee Chapter 22 


baoo-----------4 Chapter 23 |} -------------------- 


Though there are no specific prerequisites for a course in abstract algebra, 
students who have had other higher-level courses in mathematics will generally 
be more prepared than those who have not, because they will possess a bit 
more mathematical sophistication. Occasionally, we shall assume some basic 
linear algebra; that is, we shall take for granted an elementary knowledge 
of matrices and determinants. This should present no great problem, since 
most students taking a course in abstract algebra have been introduced to 
matrices and determinants elsewhere in their career, if they have not already 
taken a sophomore- or junior-level course in linear algebra. 
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Exercise sections are the heart of any mathematics text. An exercise set 
appears at the end of each chapter. The nature of the exercises ranges over 
several categories; computational, conceptual, and theoretical problems are 
included. A section presenting hints and solutions to many of the exercises 
appears at the end of the text. Often in the solutions a proof is only sketched, 
and it is up to the student to provide the details. The exercises range in 
difficulty from very easy to very challenging. Many of the more substantial 
problems require careful thought, so the student should not be discouraged 
if the solution is not forthcoming after a few minutes of work. 

There are additional exercises or computer projects at the ends of many 
of the chapters. The computer projects usually require a knowledge of 
programming. All of these exercises and projects are more substantial in 
nature and allow the exploration of new results and theory. 

Sage (sagemath.org) is a free, open source, software system for ad- 
vanced mathematics, which is ideal for assisting with a study of abstract 
algebra. Comprehensive discussion about Sage, and a selection of relevant 
exercises, are provided in an electronic format that may be used with the 
Sage Notebook in a web browser, either on your own computer, or at a public 
server such as sagenb.org. Look for this supplement at the book’s website: 
abstract.pugetsound.edu. In printed versions of the book, we include a 
brief description of Sage’s capabilities at the end of each chapter, right after 
the references. 

The open source version of this book has received support from the 
National Science Foundation (Award # 1020957). 


Acknowledgements 


I would like to acknowledge the following reviewers for their helpful comments 
and suggestions. 


e David Anderson, University of Tennessee, Knoxville 


e Robert Beezer, University of Puget Sound 


Myron Hood, California Polytechnic State University 


Herbert Kasube, Bradley University 
e John Kurtzke, University of Portland 


e Inessa Levi, University of Louisville 


vi PREFACE 


e Geoffrey Mason, University of California, Santa Cruz 
e Bruce Mericle, Mankato State University 

e Kimmo Rosenthal, Union College 

e Mark Teply, University of Wisconsin 


I would also like to thank Steve Quigley, Marnie Pommett, Cathie Griffin, 
Kelle Karshick, and the rest of the staff at PWS for their guidance throughout 
this project. It has been a pleasure to work with them. 


Thomas W. Judson 


Contents 


Preface 


1 


Preliminaries 
1.1 A Short Note on Proofs .... 0.6.00 .6 be eee ees 
1.2 Sets and Equivalence Relations ................. 


The Integers 
2.1 Mathematical Induction ................ 00004 
2.2 The Division Algorithm ...................2.. 


Groups 

3.1 Integer Equivalence Classes and Symmetries.......... 
3.2 Definitions and Examples ...................-. 
S.8 OWUDEIOUPS 2244.42 Ra eR LG be PEN ER eae ee Pe ee 


Cyclic Groups 

Al Syelig BUBECOUps .. ck ace ae 2 HAT Le ee 
4.2 Multiplicative Group of Complex Numbers .......... 
4.3 The Method of Repeated Squares. ..............-. 


Permutation Groups 
5. .Detmnivione said: Nota... << 24 660% 244 ame, oe Bs 
pe Dihedral Groupe... 2.2 o.06 RR ee ee ee oS 


Cosets and Lagrange’s Theorem 

Gl (eee. we SR ER le ee eH Be we ee ao ed 
6.2 Lagrange’s Theorem .............-.2.-2+020004 
6.3 Fermat’s and Euler’s Theorems ................-. 


vil 


iii 


vill CONTENTS 


7 Introduction to Cryptography 103 
Y.1 Private Key Cryptography... 2... 2. ee 104 
22 Public Key Crygieeripgly og ko ok Bh da we a 107 

8 Algebraic Coding Theory 115 
8.1 Error-Detecting and Correcting Codes ............. 115 
62 Lingartodes 2... 5.0254 Be keke ee eee Ee a 124 
8.3 Parity-Check and Generator Matrices ............. 128 
8.4 Efficient Decoding .................2.-22-00-4 135 

9 Isomorphisms 144 
9.1 Definition and Examples....................-. 144 
02 Direct Products... . 2.4 e228 Soe 68 CRE Re 149 

10 Normal Subgroups and Factor Groups 159 
10.1 Factor Groups and Normal Subgroups ............. 159 
10.2 The Simplicity of the Alternating Group............ 162 

11 Homomorphisms 169 
11.1 Group Homomorphisms .. 2.2... ee 169 
11.2 The Isomorphism Theorems ................004- 172 

12 Matrix Groups and Symmetry 179 
12.1 Matrix Groups . 22.424. ¢ 224454 oe ee ER EEE as 179 
12.2 Bymmewty 2 ecb eR a SR eee ee ES ee be 188 

13 The Structure of Groups 200 
13.1 Finite Abelian Groups .............-.0-00 0000 200 
13.2 Solvable Groupe ..4 4.4. e ek be ee ee Re ete ee 205 

14 Group Actions 213 
14.1 Groups Acting on Sets... 2.2... ....02.20220 02000. 213 
14.2 The Class Equation ............-. 00000 ee ee 217 
14.3 Burnside’s Counting Theorem.................4. 219 

15 The Sylow Theorems 231 
15.1 The Sylow Theorems... 06 26 ke Se 231 


15.2 Examples and Applications ................0.4. 235 


CONTENTS ix 


16 Rings 243 
DG, MS ae ba a Se BRR RO Ee eee Se eR EE 243 
16.2 Integral Domains and Fields... ................ 248 
16.3 Ring Homomorphisms and Ideals ................ 250 
16.4 Maximal and Prime Ideals... ...............-.. 254 
16.5 An Application to Software Design ..............0. 257 

17 Polynomials 268 
Teal Pobyuiinigl Ries. occ a ak RRO A eee he RE 269 
17.2 The Division Algorithm ....................-. 273 
17.3 Irreducible Polynomials ..................0-4. 277 

18 Integral Domains 288 
18.1 Fields of Fractions ...4. 2.56 -. 4.642484 525 445 288 
18.2 Factorization in Integral Domains. ............... 292 

19 Lattices and Boolean Algebras 306 
191, Libiieee: 2.3 a ee Pe a ea Bh ed ee a 306 
19.2 Boolean Algebras... ........-.. 020202020004 311 
19.3 The Algebra of Electrical Circuits... ...........0.. 317 

20 Vector Spaces 324 
20.1 Definitions and Examples .. ....0.545 5 68 b ee ws 324 
OUL2 GUS PAOES 2 6 Fa o B aa Be go ee eee ee as 326 
20.3 Linear Independence ..............2-.0+2200- 327 

21 Fields 334 
Dil Betensom Pielke «4246.4 424 favs eee ea ee ee 334 
Ble plese Piekis. ae bo eee ge 8S ee we we ce eS 345 
21.8 Geometric Constructions... 2664. be eee ee ee es 348 

22 Finite Fields 358 
22.1 Structure of a Finite Field .................2... 358 
22:2 Polynomial Codes 2 cc.) 4 2 ea Re eR a we 363 

23 Galois Theory 376 
23.1 Field Automorphisms ..............2.-.22000- 376 
23.2 The Fundamental Theorem ................2... 382 
23.5 Applications... 4.6.62 445 eee wk Re aE oo 390 


Hints and Solutions 399 


x CONTENTS 


GNU Free Documentation License 414 
Notation 422 


Index 426 


iw 


Preliminaries 


A certain amount of mathematical maturity is necessary to find and study 
applications of abstract algebra. A basic knowledge of set theory, mathe- 
matical induction, equivalence relations, and matrices is a must. Even more 
important is the ability to read and understand mathematical proofs. In 
this chapter we will outline the background needed for a course in abstract 
algebra. 


1.1 A Short Note on Proofs 


Abstract mathematics is different from other sciences. In laboratory sciences 
such as chemistry and physics, scientists perform experiments to discover 
new principles and verify theories. Although mathematics is often motivated 
by physical experimentation or by computer simulations, it is made rigorous 
through the use of logical arguments. In studying abstract mathematics, we 
take what is called an axiomatic approach; that is, we take a collection of 
objects S and assume some rules about their structure. These rules are called 
axioms. Using the axioms for S, we wish to derive other information about 
S by using logical arguments. We require that our axioms be consistent; that 
is, they should not contradict one another. We also demand that there not 
be too many axioms. If a system of axioms is too restrictive, there will be 
few examples of the mathematical structure. 

A statement in logic or mathematics is an assertion that is either true 
or false. Consider the following examples: 


e 34+56-— 1348/2. 
e All cats are black. 


e 2+3=5. 
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e 2x = 6 exactly when x = 4. 
e If ax? +ba +c=0 anda¥0, then 
—b+ Vv b2 — 4dac 


Sh 


eo — Ax? + 54-6. 


All but the first and last examples are statements, and must be either true 
or false. 

A mathematical proof is nothing more than a convincing argument 
about the accuracy of a statement. Such an argument should contain enough 
detail to convince the audience; for instance, we can see that the statement 
“2x = 6 exactly when x = 4” is false by evaluating 2-4 and noting that 
6 ~ 8, an argument that would satisfy anyone. Of course, audiences may 
vary widely: proofs can be addressed to another student, to a professor, or 
to the reader of a text. If more detail than needed is presented in the proof, 
then the explanation will be either long-winded or poorly written. If too 
much detail is omitted, then the proof may not be convincing. Again it 
is important to keep the audience in mind. High school students require 
much more detail than do graduate students. A good rule of thumb for an 
argument in an introductory abstract algebra course is that it should be 
written to convince one’s peers, whether those peers be other students or 
other readers of the text. 

Let us examine different types of statements. A statement could be as 
simple as “10/5 = 2”; however, mathematicians are usually interested in 
more complex statements such as “If p, then q,” where p and gq are both 
statements. If certain statements are known or assumed to be true, we 
wish to know what we can say about other statements. Here p is called 
the hypothesis and q is known as the conclusion. Consider the following 
statement: If ax? + ba +c=0anda¥¢0, then 


—b rv b2 — 4dac 


2a 


si — 


The hypothesis is av? + ba + ¢ = 0 and a ¥ 0; the conclusion is 


—b ryV b2 — 4dac 


2a 


r= 


Notice that the statement says nothing about whether or not the hypothesis 
is true. However, if this entire statement is true and we can show that 
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ax? + br +c = 0 with a £ 0 is true, then the conclusion must be true. A 
proof of this statement might simply be a series of equations: 


ax? + br +c=0 


Pee 
a 
a 2a ~ \ 2% a 


ee 2 & —4Aae 
i Qa) ——s« Ae. 


xv b? — 4dac 


2a 2a 
—b rv b? — 4dac 
t= ‘ 
2a 


If we can prove a statement true, then that statement is called a propo- 
sition. A proposition of major importance is called a theorem. Sometimes 
instead of proving a theorem or proposition all at once, we break the proof 
down into modules; that is, we prove several supporting propositions, which 
are called lemmas, and use the results of these propositions to prove the 
main result. If we can prove a proposition or a theorem, we will often, 
with very little effort, be able to derive other related propositions called 
corollaries. 


Some Cautions and Suggestions 


There are several different strategies for proving propositions. In addition to 
using different methods of proof, students often make some common mistakes 
when they are first learning how to prove theorems. To aid students who 
are studying abstract mathematics for the first time, we list here some of 
the difficulties that they may encounter and some of the strategies of proof 
available to them. It is a good idea to keep referring back to this list as a 
reminder. (Other techniques of proof will become apparent throughout this 
chapter and the remainder of the text.) 


e A theorem cannot be proved by example; however, the standard way to 
show that a statement is not a theorem is to provide a counterexample. 


e Quantifiers are important. Words and phrases such as only, for all, for 
every, and for some possess different meanings. 
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e Never assume any hypothesis that is not explicitly stated in the theorem. 
You cannot take things for granted. 


e Suppose you wish to show that an object exists and is unique. First 
show that there actually is such an object. To show that it is unique, 
assume that there are two such objects, say r and s, and then show 
that r= s. 


e Sometimes it is easier to prove the contrapositive of a statement. 
Proving the statement “If p, then q” is exactly the same as proving the 
statement “If not q, then not p.” 


e Although it is usually better to find a direct proof of a theorem, this 
task can sometimes be difficult. It may be easier to assume that the 
theorem that you are trying to prove is false, and to hope that in the 
course of your argument you are forced to make some statement that 
cannot possibly be true. 


Remember that one of the main objectives of higher mathematics is 
proving theorems. Theorems are tools that make new and productive ap- 
plications of mathematics possible. We use examples to give insight into 
existing theorems and to foster intuitions as to what new theorems might be 
true. Applications, examples, and proofs are tightly interconnected—much 
more so than they may seem at first appearance. 


1.2 Sets and Equivalence Relations 


Set Theory 


A set is a well-defined collection of objects; that is, it is defined in such 
a manner that we can determine for any given object x whether or not x 
belongs to the set. The objects that belong to a set are called its elements 
or members. We will denote sets by capital letters, such as A or X; if a is 
an element of the set A, we write a € A. 

A set is usually specified either by listing all of its elements inside a pair 
of braces or by stating the property that determines whether or not an object 
x belongs to the set. We might write 


MSAD se ay 
for a set containing elements 71, 22,...,%p OF 


X ={x: 2 satisfies P} 
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if each x in X satisfies a certain property P. For example, if E is the set of 
even positive integers, we can describe FE by writing either 


E = {2,4,6,...} or E={x: 2 is an even integer and x > 0}. 


We write 2 € EF when we want to say that 2 is in the set E, and —3 ¢ E to 
say that —3 is not in the set E. 
Some of the more important sets that we will consider are the following: 


N = {n: nis a natural number} = {1,2,3,...}; 
Z = {n:nis an integer} = {...,—1,0,1,2,...}; 
Q={r:r isa rational number} = {p/q: p,q € Z where q 4 0}; 
R = {z:a is a real number}; 
C = {z: z is a complex number}. 
We find various relations between sets and can perform operations on 


sets. A set A is a subset of B, written A C B or B D A, if every element of 
A is also an element of B. For example, 


{4, 5, 8} Cc 125 3, 4, 5, 6, re 8, 9} 


and 


NCZCQCRCC. 


Trivially, every set is a subset of itself. A set B is a proper subset of a 
set Aif BC A but B# A. If A is not a subset of B, we write A ¢ B; for 
example, {4,7,9} Z {2,4,5,8,9}. Two sets are equal, written A = B, if we 
can show that AC Band BC A. 

It is convenient to have a set with no elements in it. This set is called 
the empty set and is denoted by 0. Note that the empty set is a subset of 
every set. 

To construct new sets out of old sets, we can perform certain operations: 
the union AU B of two sets A and B is defined as 


AUB={x:x€Aorze B}; 
the intersection of A and B is defined by 

ANB={ar:x2e€Aand ze B}. 
If A = {1,3,5} and B = {1,2,3,9}, then 


AUB ={1,2,3,5,9} and AN B= {1,3}. 
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We can consider the union and the intersection of more than two sets. In 
this case we write 3 
J Ai = A1U...U An 
i=l 
and 
n 
() 40 = 410... An 
i=l 
for the union and intersection, respectively, of the sets Aj,..., An. 

When two sets have no elements in common, they are said to be disjoint; 
for example, if EF is the set of even integers and O is the set of odd integers, 
then FE and O are disjoint. Two sets A and B are disjoint exactly when 
ANB=6. 

Sometimes we will work within one fixed set U, called the universal set. 
For any set A C U, we define the complement of A, denoted by A’, to be 
the set 

A ={x:2€U andz ¢ A}. 


We define the difference of two sets A and B to be 


A\B=ANB ={2r:r€ Aandz ¢ B}. 


Example 1. Let R be the universal set and suppose that 
A={xeER:0<2<3} and B={xeER:2<2< 4}. 
Then 


ANB ={7eRi2<¢< 3} 
AUB={xzER:0<2< 4} 
A\B={xER:0<2< 2} 

A ={xER:2<0orgz>3}. 


Proposition 1.1 Let A, B, and C be sets. Then 
1. AUA=A, ANA=A, and A\ A=9; 
2. AUO=A and AND=9; 
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3. AU(BUC) =(AUB)UC and AN(BNC) =(ANB)NC; 
4. AUB=BUA and ANB=BN4A; 

5. AU(BNC) =(AUB)N(AUC); 

6. AN(BUC) =(ANB)U(ANC). 


PROOF. We will prove (1) and (3) and leave the remaining results to be 
proven in the exercises. 
(1) Observe that 


AUA={«a:x2€AorxzeE A} 
={xr:x€ A} 
=A 


and 


ANA={a:xeEAand ze A} 
={x:x2€ A} 
=A. 
Also, A\A=ANA'=9. 
(3) For sets A, B, and C, 
AU(BUC)=AU{a:r2E€ BorxeCc} 
={x:xeEAorxze B, orxreEC} 


={x:xeEAorxre B}UC 
= (AU By. 


A similar argument proves that AN (BNC) = (AN B)NC. 


Theorem 1.2 (De Morgan’s Laws) Let A and B be sets. Then 

1. (AUB)/=A'NB’; 

2. (ANB) =A'UB". 
PROOF. (1) We must show that (AU B)’ Cc A’N B’ and (AUB) Dd A'N BB’. 
Let x € (AUB). Then x ¢ AUB. So z is neither in A nor in B, by the 


definition of the union of sets. By the definition of the complement, x € A’ 
and x € B’. Therefore, x € A’ B’ and we have (AU B)' c A’ B’. 
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To show the reverse inclusion, suppose that 2 € A’M B’. Then x € A’ 
and « € B’,andso x ¢ Aand z ¢ B. Thus xz ¢ AUB and so xz € (AUBY’. 
Hence, (AU B)' > A'N B’ and so (AUB) = A'N B’. 

The proof of (2) is left as an exercise. 


Example 2. Other relations between sets often hold true. For example, 
(A\ B)N(B\ A) =9. 
To see that this is true, observe that 


(A\ B)N(B\ A) =(ANB/)N(BN 4A’) 
=ANA'NBNB 
— 


Cartesian Products and Mappings 


Given sets A and B, we can define a new set A x B, called the Cartesian 
product of A and B, as a set of ordered pairs. That is, 


Ax B={(a,b):a€ A and bE B}. 


Example 3. If A = {z,y}, B = {1,2,3}, and C = 0, then A x B is the set 


{(#, 1), (#2), (#3), (YD), (Y 2); (Y, 3)} 


and 
AxC=@. 
| 
We define the Cartesian product of n sets to be 
Ay X +++ xX An = {(@1,..-,@n): a; € A; fori =1,...,n}. 
If A = Ay = Ag = --- = An, we often write A” for A x --- x A (where A 


would be written n times). For example, the set R® consists of all of 3-tuples 
of real numbers. 

Subsets of A x B are called relations. We will define a mapping or 
function f C Ax B from a set A to a set B to be the special type of 
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relation in which for each element a € A there is a unique element b € B 
such that (a,b) € f; another way of saying this is that for every element in 


A, f assigns a unique element in B. We usually write f: A— Bor A aly 
Instead of writing down ordered pairs (a,b) € A x B, we write f(a) = 6 or 
f:at>b. The set A is called the domain of f and 


f(A) ={f(a@):ae A} CB 


is called the range or image of f. We can think of the elements in the 
function’s domain as input values and the elements in the function’s range 
as output values. 


A B 


Figure 1.1. Mappings 


Example 4. Suppose A = {1,2,3} and B = {a,b,c}. In Figure 1.1 we 
define relations f and g from A to B. The relation f is a mapping, but g is 
not because 1 € A is not assigned to a unique element in B; that is, g(1) =a 
and g(1) = b. a 


Given a function f : A > B, it is often possible to write a list describing 
what the function does to each specific element in the domain. However, not 
all functions can be described in this manner. For example, the function 
f :R- R that sends each real number to its cube is a mapping that must 
be described by writing f(x) = x? or f: rH 2°. 
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Consider the relation f : Q > Z given by f(p/q) = p. We know that 
1/2 = 2/4, but is f(1/2) = 1 or 2? This relation cannot be a mapping 
because it is not well-defined. A relation is well-defined if each element in 
the domain is assigned to a unique element in the range. 

If f : A— B is a map and the image of f is B, i.e., f(A) = B, then f 
is said to be onto or surjective. In other words, if there exists ana € A 
for each b € B such that f(a) = b, then f is onto. A map is one-to-one 
or injective if a; # a2 implies f(a,) # f(a2). Equivalently, a function is 
one-to-one if f(a,) = f(a2) implies aj = ag. A map that is both one-to-one 
and onto is called bijective. 


Example 5. Let f : Z > Q be defined by f(n) = n/1. Then f is one-to-one 
but not onto. Define g : Q > Z by g(p/q) = p where p/q is a rational number 
expressed in its lowest terms with a positive denominator. The function g is 
onto but not one-to-one. a 


Given two functions, we can construct a new function by using the range 
of the first function as the domain of the second function. Let f: A— B 
and g: B > C be mappings. Define a new map, the composition of f and 


g from A to C, by (g° f)(#) = g(f(#)). 


Figure 1.2. Composition of maps 
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Example 6. Consider the functions f : A > B and g: B > C that are 
defined in Figure 1.2(a). The composition of these functions, go f: A> C, 
is defined in Figure 1.2(b). a 


Example 7. Let f(x) = 2? and g(x) = 2x +5. Then 
(f og)(x) = f(g(a)) = (2a + 5)? = 42? + 202 + 25 


and 
(go f)(z) = 9(f(x)) = 22? +5. 


In general, order makes a difference; that is, in most cases fog#go/f. Hf 


Example 8. Sometimes it is the case that fog=gof. Let f(r) =x? and 
g(x) = Wx. Then 


(fog)(x) = f(g(@)) = f(W2) = (Wa)? = 


and 


Example 9. Given a 2 x 2 matrix 
A= (: 4 

we can define a map T4 : R? — R? by 

Ta(x, y) = (ax + by, cx + dy) 
for (x,y) in R?. This is actually matrix multiplication; that is, 

(: 4 (5) -_ eaes 

c da} \y cz + dy) ° 

Maps from R” to R™ given by matrices are called linear maps or linear 
transformations. | 


Example 10. Suppose that S = {1,2,3}. Define a map 7: S > S by 


eli b= 2, a(2)= 1, may= 3: 
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This is a bijective map. An alternative way to write 7 is 


1 2 3 W225 63 
m(1) 7 T = : 
( (1) (2) ‘) € 1 3) 


For any set S, a one-to-one and onto mapping 7: S — S is called a 
permutation of S. | 
Theorem 1.3 Let f: A> B,g: BOC, andh:C—- D. Then 
1. The composition of mappings is associative; that is, (hog)of = ho(gof); 
2. If f and g are both one-to-one, then the mapping go f is one-to-one; 
3. If f and g are both onto, then the mapping go f is onto; 


4. If f and g are bijective, then so is go f. 


PROOF. We will prove (1) and (3). Part (2) is left as an exercise. Part (4) 
follows directly from (2) and (3). 
(1) We must show that 


For a € A we have 


(3) Assume that f and g are both onto functions. Given c € C, we must 
show that there exists an a € A such that (go f)(a) = g(f(a)) = c. However, 
since g is onto, there is a b € B such that g(b) = c. Similarly, there is an 
a € A such that f(a) = 6. Accordingly, 


(9° f)(@) = g(f(a)) = g() =<. 


If S is any set, we will use zdg or id to denote the identity mapping 
from S to itself. Define this map by id(s) = s for alls € S. Amapg: B> A 
is an inverse mapping of f: A> Bifgof = id, and fog = idg; in 
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other words, the inverse function of a function simply “undoes” the function. 
A map is said to be invertible if it has an inverse. We usually write f~! 
for the inverse of f. 


Example 11. The function f(z) = x° has inverse f~!(x) = ¢/x by Exam- 
ple 8. | 


Example 12. The natural logarithm and the exponential functions, f(x) = 
Inx and f~!(x) = e”, are inverses of each other provided that we are careful 
about choosing domains. Observe that 


and 
P-"Ga@)=7 the) Se” =e 


whenever composition makes sense. | 


A=(3 5 


Then A defines a map from R? to R? by 


Example 13. Suppose that 


Ta(x,y) = (8a + y, 5a + 2y). 


We can find an inverse map of 74 by simply inverting the matrix A; that is, 
rr = T,-1. In this example, 


2 -1 
—— & 3 ) 
hence, the inverse map is given by 
hipese? y) = (2a — y, —5ax + 3y). 
It is easy to check that 
Ty’ oTa(x,y) =Ta0Ty*(a,y) = (2,9). 
Not every map has an inverse. If we consider the map 


Tp(z,y) = (32,0) 
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3 0 
e=(0 9) 


then an inverse map would have to be of the form 


given by the matrix 


T 5" (a; y) = (ax + by, cx + dy) 


and 
(x,y) = To T3'(2,y) = (3x + 3by, 0) 


for all x and y. Clearly this is impossible because y might not be 0. | 


Example 14. Given the permutation 


on S = {1,2,3}, it is easy to see that the permutation defined by 


ey ee 
lea ar ae 


is the inverse of 7. In fact, any bijective mapping possesses an inverse, as we 
will see in the next theorem. | 


Theorem 1.4 A mapping is invertible if and only if it is both one-to-one 
and onto. 


PROOF. Suppose first that f : A — B is invertible with inverse g: B > A. 
Then go f = id, is the identity map; that is, g(f(a)) =a. If a1,a2 € A 
with f(a,) = f(a2), then a, = g(f(a1)) = g(f(a2)) = ag. Consequently, f is 
one-to-one. Now suppose that b € B. To show that f is onto, it is necessary 
to find an a € A such that f(a) = 6, but f(g(b)) = b with g(b) € A. Let 
a = g(b). 

Now assume the converse; that is, let f be bijective. Let b € B. Since f 
is onto, there exists an a € A such that f(a) = b. Because f is one-to-one, a 
must be unique. Define g by letting g(b) = a. We have now constructed the 
inverse of f. 
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Equivalence Relations and Partitions 


A fundamental notion in mathematics is that of equality. We can generalize 
equality with the introduction of equivalence relations and equivalence classes. 
An equivalence relation on a set X is a relation RC X x X such that 


e (x,x) € R for all x € X (reflexive property); 
e (x,y) € R implies (y,x) € R (symmetric property); 
e (x,y) and (y,z) € R imply (2, z) € R (transitive property). 


Given an equivalence relation R on a set X, we usually write x ~ y instead 
of (x,y) € R. If the equivalence relation already has an associated notation 
such as =, =, or &, we will use that notation. 


Example 15. Let p, qg, r, and s be integers, where q and s are nonzero. 
Define p/q ~ r/s if ps = qr. Clearly ~ is reflexive and symmetric. To show 
that it is also transitive, suppose that p/q ~ r/s and r/s ~ t/u, with q, s, 
and u all nonzero. Then ps = gr and ru = st. Therefore, 


psu = qru = qst. 


Since s £0, pu = qt. Consequently, p/q ~ t/u. | 


Example 16. Suppose that f and g are differentiable functions on R. We 
can define an equivalence relation on such functions by letting f(x) ~ g(x) 
if f’(z) = g(x). It is clear that ~ is both reflexive and symmetric. To 
demonstrate transitivity, suppose that f(x) ~ g(x) and g(x) ~ h(x). From 
calculus we know that f(a) — g(x) = c; and g(x) — h(x) = co, where c, and 
cg are both constants. Hence, 


and f’(x) — h’(x) =0. Therefore, f(x) ~ h(2). a 


Example 17. For (21,41) and (a2, y2) in R?, define (1, y1) ~ (a2, y2) if 
x? + y? = 23 + y3. Then ~ is an equivalence relation on R?. | 


Example 18. Let A and B be 2 x2 matrices with entries in the real numbers. 
We can define an equivalence relation on the set of 2 x 2 matrices, by saying 
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A~ B if there exists an invertible matrix P such that PAP~! = B. For 


example, if 
a. -18 33 
as & anes AE ee an 


then A ~ B since PAP~! = B for 


Pa ae 


Let I be the 2 x 2 identity matrix; that is, 


Then JAIJ~! = JAI = A; therefore, the relation is reflexive. To show 
symmetry, suppose that A ~ B. Then there exists an invertible matrix P 
such that PAP~! = B. So 


A=P7BP =P BP?) 


Finally, suppose that A ~ B and B ~ C.. Then there exist invertible matrices 
P and Q such that PAP~! = B and QBQ-! = C. Since 


= OBO SOPAP 10 =(OP)AOP)*. 


the relation is transitive. Two matrices that are equivalent in this manner 
are said to be stmilar. | 


A partition P of a set X is a collection of nonempty sets X,, X2,... 
such that X;7 X; = @ for i A j and U, X, = X. Let ~ be an equivalence 
relation on a set X and let x € X. Then [xz] = {y € X : y~ 2} is called the 
equivalence class of x. We will see that an equivalence relation gives rise 
to a partition via equivalence classes. Also, whenever a partition of a set 
exists, there is some natural underlying equivalence relation, as the following 
theorem demonstrates. 


Theorem 1.5 Given an equivalence relation ~ on a set X, the equivalence 
classes of X form a partition of X. Conversely, if P = {X;} is a partition of 
a set X, then there is an equivalence relation on X with equivalence classes 
X;. 
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PROOF. Suppose there exists an equivalence relation ~ on the set X. For 
any x € X, the reflexive property shows that x € [a] and so [2] is nonempty. 
Clearly X = U,¢x|2]. Now let 2,y © X. We need to show that either 
[z] = [y] or [2] M [y] =. Suppose that the intersection of [x] and [y] is not 
empty and that z € [z]M [y]. Then z ~ x and z ~ y. By symmetry and 
transitivity « ~ y; hence, [x] C [y]. Similarly, [y] C [x] and so [a] = [y]. 
Therefore, any two equivalence classes are either disjoint or exactly the same. 

Conversely, suppose that P = {X;} is a partition of a set X. Let two 
elements be equivalent if they are in the same partition. Clearly, the relation 
is reflexive. If x is in the same partition as y, then y is in the same partition 
as z,sox~y implies y ~ x. Finally, if x is in the same partition as y and y 
is in the same partition as z, then x must be in the same partition as z, and 


transitivity holds. 


Corollary 1.6 Two equivalence classes of an equivalence relation are either 
disjoint or equal. 


Let us examine some of the partitions given by the equivalence classes in 
the last set of examples. 


Example 19. In the equivalence relation in Example 15, two pairs of 
integers, (p,q) and (r,s), are in the same equivalence class when they reduce 
to the same fraction in its lowest terms. a 


Example 20. In the equivalence relation in Example 16, two functions f(x) 
and g(x) are in the same partition when they differ by a constant. a 


Example 21. We defined an equivalence class on R? by (21, y1) ~ (2, ye) 
if x? + y? = x3 + y3. Two pairs of real numbers are in the same partition 
when they lie on the same circle about the origin. | 


Example 22. Let r and s be two integers and suppose that n € N. We 
say that r is congruent to s modulo n, or r is congruent to s mod n, if 
r — s is evenly divisible by n; that is, r —.s = nk for some k € Z. In this case 
we write r= s (mod n). For example, 41 = 17 (mod 8) since 41 — 17 = 24 
is divisible by 8. We claim that congruence modulo n forms an equivalence 
relation of Z. Certainly any integer r is equivalent to itself since r — r = 0 is 
divisible by n. We will now show that the relation is symmetric. If r = s 
(mod n), then r—s = —(s—r) is divisible by n. So s—r is divisible by n and 
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s =r (mod n). Now suppose that r = s (mod n) and s=t (mod n). Then 
there exist integers k and / such that r— s = kn and s—t =n. To show 
transitivity, it is necessary to prove that r — t¢ is divisible by n. However, 


r—-t=r—st+s—-t=kn+n=(k4+)n, 


and so r — t is divisible by n. 
If we consider the equivalence relation established by the integers modulo 
3, then 


[0] = {...,-3,0,3,6,...}, 
i eee ee 
Fee Cees Oe see 


Notice that [0] U [1] U [2] = Z and also that the sets are disjoint. The sets [0], 
[1], and [2] form a partition of the integers. 

The integers modulo n are a very important example in the study of 
abstract algebra and will become quite useful in our investigation of various 
algebraic structures such as groups and rings. In our discussion of the integers 
modulo n we have actually assumed a result known as the division algorithm, 
which will be stated and proved in Chapter 2. a 


Exercises 


1. Suppose that 


A= {«x:a €N and « is even}, 
B={«:«€WN and z is prime}, 
C ={x:a€N and zg isa multiple of 5}. 


Describe each of the following sets. 
(a) ANB (c) AUB 
(b) BNC (d) AN(BUC) 


2. If A= {a,b,c}, B = {1, 2,3}, C = {x}, and D = 9, list all of the elements in 
each of the following sets. 
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(a) Ax B (c) AX BxC 
(b) Bx A (d) Ax D 


3. Find an example of two nonempty sets A and B for which A x B= Bx A is 
true. 


4. Prove AU®@=A and ANO=9. 

5. Prove AUB=BUAand ANB=BNA. 
6. Prove AU(BNC) = (AU B)N (AUC). 

7. Prove AN(BUC) = (AN B)U(ANC). 

8. Prove AC B if and only if AN B=A. 

9. Prove (AN B) = A’U B’. 

10. Prove AUB =(AN B)U(A\ B)U(B\ A). 
11. Prove (AUB) x C=(AxC)U(BxC). 
12. Prove (AN B)\ B=9. 

13. Prove (AU B)\ B=A\B. 

14. Prove A\ (BUC) = (A\ B)N(A\C). 

15. Prove AN(B\C) = (AN B)\ (ANC). 

16. Prove (A\ B)U(B\ A) = (AUB) \ (ANB). 


17. Which of the following relations f : Q — Q define a mapping? In each case, 
supply a reason why f is or is not a mapping. 


Cmte a (c) f(p/q) = oo 
(b) F(p/a) = (a) f(p/a) = 4 -2 


18. Determine which of the following functions are one-to-one and which are onto. 
If the function is not onto, determine its range. 


(a) f:R—- R defined by f(x) = e” 
(b) f :Z— Z defined by f(n) =n? +3 
(c) f: R-R defined by f(x) = sinx 
(d) f:Z—Z defined by f(x) = 2? 


19. Let f: A> Bandg: BC be invertible mappings; that is, mappings such 
that f~' and g~! exist. Show that (go f)"! = flog l. 


20. (a) Define a function f : N > N that is one-to-one but not onto. 
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21. 


22. 


23. 


24. 


25. 


26. 


27. 
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(b) Define a function f : N > N that is onto but not one-to-one. 


Prove the relation defined on R? by (21, y1) ~ (2, yo) if x} + y? = 23 + y3 is 
an equivalence relation. 


Let f: A— Band g: BC be maps. 


(e) If go f is onto and g is one-to-one, show that f is onto. 
Define a function on the real numbers by 


x+1 
z—l 


f(@) = 


What are the domain and range of f? What is the inverse of f? Compute 
fof! and fof. 
Let f : X > Y bea map with A;, Ag C X and By, By CY. 

(a) Prove f(At U Ag) = f(At) U f (Ag). 


(b) Prove f(A1M Az) C f(A1) NM f(Az). Give an example in which equality 
fails. 


(c) Prove fe Sy U Bo) = f By U f-1(Ba), where 
ff) (B) ={a eX: f(x) € Bh. 


(d) Prove timeless) NM Bz) = f-'(Bi) NM > (Bo): 

(e) Prove f-1(Y \ Bi) = X \ f-4(Bi). 
Determine whether or not the following relations are equivalence relations on 
the given set. If the relation is an equivalence relation, describe the partition 


given by it. If the relation is not an equivalence relation, state why it fails to 
be one. 


NS 


(a) t~yinRifasdy (c) e~yim Rif lx—y| <4 

(b) m~ninZ if mn >0 (d) m~ninZif m=n (mod 6) 
Define a relation ~ on R? by stating that (a,b) ~ (c,d) if and only if 
a? + b? < c? + d?. Show that ~ is reflexive and transitive but not symmetric. 


Show that an m x n matrix gives rise to a well-defined map from R” to R”. 
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28. 


29. 


Find the error in the following argument by providing a counterexample. 
“The reflexive property is redundant in the axioms for an equivalence relation. 
Ifa ~ y, then y ~ x by the symmetric property. Using the transitive property, 
we can deduce that x ~ x.” 


Projective Real Line. Define a relation on R? \ (0,0) by letting (1, y1) ~ 
(2, 2) if there exists a nonzero real number X such that (x1, y1) = (Ave, Ay2). 
Prove that ~ defines an equivalence relation on R? \ (0,0). What are the 
corresponding equivalence classes? This equivalence relation defines the 
projective line, denoted by P(R), which is very important in geometry. 
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The Integers 


The integers are the building blocks of mathematics. In this chapter we 
will investigate the fundamental properties of the integers, including mathe- 
matical induction, the division algorithm, and the Fundamental Theorem of 
Arithmetic. 


2.1 Mathematical Induction 


Suppose we wish to show that 


n(n + 1) 
2 


for any natural number n. This formula is easily verified for small numbers 


such as n = 1, 2, 3, or 4, but it is impossible to verify for all natural numbers 
on a case-by-case basis. To prove the formula true in general, a more generic 
method is required. 

Suppose we have verified the equation for the first n cases. We will 
attempt to show that we can generate the formula for the (n + 1)th case 
from this knowledge. The formula is true for n = 1 since 


,_ 12+) 
= aes 
If we have verified the first n cases, then 
nin+1 
1+2+---+n4+(n+)l= me errs 
_ Ww +3n42 
7 y 
— (n+1)[(n4+1)4+] 
= 2 
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This is exactly the formula for the (n + 1)th case. 

This method of proof is known as mathematical induction. Instead of 
attempting to verify a statement about some subset S' of the positive integers 
N on a case-by-case basis, an impossible task if S is an infinite set, we give a 
specific proof for the smallest integer being considered, followed by a generic 
argument showing that if the statement holds for a given case, then it must 
also hold for the next case in the sequence. We summarize mathematical 
induction in the following axiom. 


First Principle of Mathematical Induction. Let S(n) be a statement 
about integers for n € N and suppose S(no) is true for some integer no. If 
for all integers k with k > no S(k) implies that S(k + 1) is true, then S(n) 
is true for all integers n greater than no. 


Example 1. For all integers n > 3, 2” > n+4. Since 
8=22?>344=7, 


the statement is true for no = 3. Assume that 2° > k +4 for k > 3. Then 
gkt1 — 2.9% > 2(k +4). But 


(k+4)=2k+8>k+5=(k+1)+4 


since k is positive. Hence, by induction, the statement holds for all integers 
n> 3. | 


Example 2. Every integer 10°+! + 3-10" +4 5 is divisible by 9 for n EN. 
For n = 1, 
10'T+3-10+5=135 =9-15 


is divisible by 9. Suppose that 10°+! + 3-10" + 5 is divisible by 9 for k > 1. 
Then 


10@+)+14-3. 10**1 4.5 = 10"? + 3 <10"*2 4 50 — 45 
= 1010" £30108 5) a5 


is divisible by 9. |_| 


Example 3. We will prove the binomial theorem using mathematical 


induction; that is, 
n 
a+ b nm ape 
(arora > (;) 
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where a and 6 are real numbers, n € N, and 


(t) - me 


is the binomial coefficient. We first show that 


("5") 7 a +(,",): 


This result follows from 


& as é ‘ = aa en Ce a k+1)! 
(n +1)! 


~ k(n +1—h)! 
_fnt+i 
= ye } 
If n = 1, the binomial theorem is easy to verify. Now assume that the result 


is true for n greater than or equal to 1. Then 


(a+b)"*! = (a+b)(a +b)” 


= (a+b) (>: (;) oni) 


\| 

*s 

+ 
eg 


n kpn+1—k “ (n kpn+1—k n+l 
(at +o (per +b 


) A (.)| gkprti-k 4 pnt 


I 

=) 

ia 

a 

+ 
Uae 
——— 
aN 
ca 
| 3 
— 


We have an equivalent statement of the Principle of Mathematical Induc- 
tion that is often very useful. 


Second Principle of Mathematical Induction. Let S(n) be a statement 
about integers for n € N and suppose S(ng) is true for some integer no. If 
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S(no), S(no+1),...,.$(k) imply that S(k+1) for k > no, then the statement 
S(n) is true for all integers n greater than no. 


A nonempty subset S' of Z is well-ordered if S contains a least element. 
Notice that the set Z is not well-ordered since it does not contain a smallest 
element. However, the natural numbers are well-ordered. 


Principle of Well-Ordering. Every nonempty subset of the natural num- 
bers is well-ordered. 


The Principle of Well-Ordering is equivalent to the Principle of Mathe- 
matical Induction. 


Lemma 2.1 The Principle of Mathematical Induction implies that 1 is the 
least positive natural number. 


Proor. Let S={n€N:n>1}. Then 1 € S. Now assume that n € S; 
that is,n > 1. Sincen+1>1,n+1€ S; hence, by induction, every natural 
number is greater than or equal to 1. 


Theorem 2.2 The Principle of Mathematical Induction implies the Princi- 
ple of Well-Ordering. That is, every nonempty subset of N contains a least 
element. 


PROOF. We must show that if S is a nonempty subset of the natural numbers, 
then S contains a smallest element. If S contains 1, then the theorem is true 
by Lemma 2.1. Assume that if S contains an integer k such that 1 <k <n, 
then S' contains a smallest element. We will show that if a set S contains 
an integer less than or equal to n+ 1, then S has a smallest element. If 
S does not contain an integer less than n+ 1, then n+ 1 is the smallest 
integer in S. Otherwise, since S' is nonempty, S must contain an integer less 
than or equal to n. In this case, by induction, S' contains a smallest integer. 


Induction can also be very useful in formulating definitions. For instance, 
there are two ways to define n!, the factorial of a positive integer n. 


e The explicit definition: n! =1-2-3---(n—1)-n. 


e The inductive or recursive definition: 1! = 1 and n! = n(n — 1)! for 
n>. 


Every good mathematician or computer scientist knows that looking at prob- 
lems recursively, as opposed to explicitly, often results in better understanding 
of complex issues. 
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2.2 The Division Algorithm 


An application of the Principle of Well-Ordering that we will use often is the 
division algorithm. 


Theorem 2.3 (Division Algorithm) Let a and b be integers, with b > 0. 
Then there exist unique integers q and r such that 


a=bq+r 
whereOQ<r< 0b. 


PROOF. This is a perfect example of the existence-and-uniqueness type of 
proof. We must first prove that the numbers qg and r actually exist. Then 
we must show that if q’ and r’ are two other such numbers, then g = q’ and 
ee 

Existence of q and r. Let 


S ={a-—bk:k € Zand a— bk > O}. 


If 0 € S, then 6 divides a, and we can let ¢g = a/b and r= 0. If 0 ¢ S, we 
can use the Well-Ordering Principle. We must first show that S is nonempty. 
Ifa >0, thena—6b-0€S. Ifa < 0, then a — b(2a) = a(1 — 26) € S. In 
either case S # J. By the Well-Ordering Principle, 5 must have a smallest 
member, say r = a — bq. Therefore, a = bg +r, r > 0. We now show that 
r <b. Suppose that r > 6. Then 


a—b(q+1)=a-—bq—b=r—b>0. 


In this case we would have a — b(q+ 1) in the set S. But then a — b(q4+ 1) < 
a—bq, which would contradict the fact that r = a—bg is the smallest member 
of S. Sor <b. Since 0 ¢ S,rAband sor <b. 
Uniqueness of q and r. Suppose there exist integers r, r’, g, and q’ such 
that 
a=bqt+r,0<r<b and a=bq +r',0<r' <b. 


Then bg +r = bq’ +r’. Assume that r’ > r. From the last equation we have 
b(q —q') =r’ —r; therefore, b must divide r’—r and 0<r’-—r<r' <b. 
This is possible only if r’ —r =0. Hence, r =r’ and q=q/. 


Let a and b be integers. If b = ak for some integer k, we write a| b. An 
integer d is called a common divisor of a and b if d| a andd| b. The 
greatest common divisor of integers a and b is a positive integer d such 


28 CHAPTER 2. THE INTEGERS 


that d is a common divisor of a and 6 and if d’ is any other common divisor 
of a and b, then d' | d. We write d = gcd(a, b); for example, gcd(24, 36) = 12 
and gcd(120,102) = 6. We say that two integers a and 6 are relatively 
prime if gcd(a, b) = 1. 


Theorem 2.4 Leta and b be nonzero integers. Then there exist integers r 
and s such that 
gcd(a, b) = ar + bs. 


Furthermore, the greatest common divisor of a and b is unique. 
PROoF. Let 
S ={am+bn:m,n € Z and am + bn > O}. 


Clearly, the set S' is nonempty; hence, by the Well-Ordering Principle S$ 
must have a smallest member, say d = ar + bs. We claim that d = gcd(a, b). 
Write a = dq+r’ where 0 <r’ <d. Ifr’ > 0, then 


r' =a—dq 
=a-—(ar+bs)q 
=a-—arq— bsq 


= a(1— rq) + b(—sq), 


which is in S. But this would contradict the fact that d is the smallest 
member of S. Hence, r’ = 0 and d divides a. A similar argument shows that 
d divides b. Therefore, d is a common divisor of a and 0. 


Suppose that d’ is another common divisor of a and b, and we want to 
show that d' | d. If we let a = d'h and b = d’k, then 


d=ar+bs=dhr+dks=d' (hr +ks). 


So d’ must divide d. Hence, d must be the unique greatest common divisor 
of a and b. 


Corollary 2.5 Leta and b be two integers that are relatively prime. Then 
there exist integers r and s such that ar + bs = 1. 
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The Euclidean Algorithm 


Among other things, Theorem 2.4 allows us to compute the greatest common 
divisor of two integers. 


Example 4. Let us compute the greatest common divisor of 945 and 2415. 
First observe that 


2415 = 945 - 2+ 525 
945 = 525-1+4 420 
525 = 420-1+4 105 
420 = 105-4+0. 


Reversing our steps, 105 divides 420, 105 divides 525, 105 divides 945, and 
105 divides 2415. Hence, 105 divides both 945 and 2415. If d were another 
common divisor of 945 and 2415, then d would also have to divide 105. 
Therefore, gcd(945, 2415) = 105. 

If we work backward through the above sequence of equations, we can 
also obtain numbers r and s such that 945r + 2415s = 105. Observe that 


105 = 525 + (—1) - 420 
= 525 + (—1) - [945 + (—1) - 525] 
= 2-525 + (—1) - 945 
= 2. [2415 + (—2) - 945] + (—1) - 945 
= 2.2415 + (—5) - 945. 


So r= —5 and s = 2. Notice that r and s are not unique, since r = 41 and 
s = —16 would also work. | 


To compute gcd(a,b) = d, we are using repeated divisions to obtain a 
decreasing sequence of positive integers ry > rg > +--+ > Tn = d; that is, 
b= adi + 1T1 
a=T192 +72 
Tr] = 7293 +73 


Tr—-2 =Tn-19n + Tn 


Tn-1 = TnQn4+1- 
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To find r and s such that ar + bs = d, we begin with this last equation and 
substitute results obtained from the previous equations: 
d=Tn 
= Tn—2 — Tn-149n 
= Tn-2 — tts _ Gn ano) 


= —nTn—3 + (1 + Gdn) Ta-2 


=ra+sb. 


The algorithm that we have just used to find the greatest common divisor d 
of two integers a and 6 and to write d as the linear combination of a and 6 is 
known as the Euclidean algorithm. 


Prime Numbers 


Let p be an integer such that p > 1. We say that p is a prime number, or 
simply p is prime, if the only positive numbers that divide p are 1 and p 
itself. An integer n > 1 that is not prime is said to be composite. 


Lemma 2.6 (Euclid) Let a and b be integers and p be a prime number. If 
p|ab, then either p|a or p| b. 


PROOF. Suppose that p does not divide a. We must show that p | b. Since 
gcd(a, p) = 1, there exist integers r and s such that ar + ps = 1. So 


b = b(ar + ps) = (ab)r + p(bs). 


Since p divides both ab and itself, p must divide b = (ab)r + p(bs). 


Theorem 2.7 (Euclid) There exist an infinite number of primes. 


PROOF. We will prove this theorem by contradiction. Suppose that there 
are only a finite number of primes, say pi, p2,.--,Pn- Let P = pyp2-+- pn +1. 
Then P must be divisible by some p; for 1 <i <n. In this case, p; must 
divide P — p,p2-+- py, = 1, which is a contradiction. Hence, either P is prime 
or there exists an additional prime number p ¥ p; that divides P. 


Theorem 2.8 (Fundamental Theorem of Arithmetic) Let n be an 
integer such thatn > 1. Then 


mM = Pip2°**Dk; 
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where pi,...,Pp are primes (not necessarily distinct). Furthermore, this 
factorization is unique; that is, if 


m= q19d2°°° dd, 


then k = 1 and the q;’s are just the p;’s rearranged. 


PROOF. Uniqueness. To show uniqueness we will use induction on n. The 
theorem is certainly true for n = 2 since in this case n is prime. Now assume 
that the result holds for all integers m such that 1 <m <n, and 


mM = Pip2°**Pk = 9192°°* W, 


where py < po < +++ < pp and q <q <--- <q. By Lemma 2.6, p, | q for 
somei=1,...,/ and q | p; forsome j = 1,...,k. Since all of the p,;’s and q;’s 
are prime, p; = q and qi = p;. Hence, pi; = qi since pj < pj = G1 < G = Pi. 
By the induction hypothesis, 
n’ = p2°** Dk = 42°" 

has a unique factorization. Hence, k = 1 and q; = p; fori =1,...,k. 

Existence. 'To show existence, suppose that there is some integer that 
cannot be written as the product of primes. Let S be the set of all such 
numbers. By the Principle of Well-Ordering, S has a smallest number, say 
a. If the only positive factors of a are a and 1, then a is prime, which is a 
contradiction. Hence, a = aja where 1 < ay < a and 1 < ag <a. Neither 
a, € S nor a2 € S, since a is the smallest element in S. So 


a1 = P1i-'**Pr 


a2 = 41°°" Ws: 


Therefore, 
a = A142 = Pi-**Prdi**: ds- 


So a ¢ S, which is a contradiction. 


Historical Note 


32 CHAPTER 2. THE INTEGERS 


Prime numbers were first studied by the ancient Greeks. Two important results 
from antiquity are Euclid’s proof that an infinite number of primes exist and the 
Sieve of Eratosthenes, a method of computing all of the prime numbers less than a 
fixed positive integer n. One problem in number theory is to find a function f such 
that f(n) is prime for each integer n. Pierre Fermat (1601?-1665) conjectured that 
2?" 4+ 1 was prime for all n, but later it was shown by Leonhard Euler (1707-1783) 
that 
9? 41 = 4,294,967,297 


is a composite number. One of the many unproven conjectures about prime numbers 
is Goldbach’s Conjecture. In a letter to Euler in 1742, Christian Goldbach stated 
the conjecture that every even integer with the exception of 2 seemed to be the sum 
of two primes: 4 = 2+2,6=3+3,8=3+5,.... Although the conjecture has been 
verified for the numbers up through 100 million, it has yet to be proven in general. 
Since prime numbers play an important role in public key cryptography, there is 
currently a great deal of interest in determining whether or not a large number is 
prime. L] 


Exercises 


1. Prove that 
n(n + 1)(2n + 1) 


12 92 deesienal 2 = 
aa? i n 6 
forn EN. 
2. Prove that , 
y2493 4 pam mt) 
T T T 4 
forn EN. 
3. Prove that n! > 2” for n > 4. 
4. Prove that 
n(3n — 1)ax 


“«+4a+7r+---+(8n-2)r= 
for n EN. 
5. Prove that 10"*! + 10” + 1 is divisible by 3 for n € N. 
6. Prove that 4-10?" +9-10?"-1 + 5 is divisible by 99 for n € N. 
7. Show that 


1 n 
*/a102°**An < — Ak. 
142 nS— >a 


k=1 


8. Prove the Leibniz rule for f(x), where f(”) is the nth derivative of f; that 
is, show that 


(190) = > (TJM ea", 
k=0 
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9. 
10. 


11. 


12. 


13. 


14. 


15. 


16. 


Ves 


Use induction to prove that 1+ 2+2?+---+2"=2"+1!_1 forneEN. 


Prove that 
Eels cas 1 oon 
2° G 'n(n+1) n+l 


for ne N. 
If x is a nonnegative real number, then show that (1 +2)" —1 > na for 
n=0,1,2,.... 


Power Sets. Let X bea set. Define the power set of X, denoted P(X), 
to be the set of all subsets of X. For example, 


P({a, b}) = {0, {a}, {b}, {a, b}}. 


For every positive integer n, show that a set with exactly n elements has a 
power set with exactly 2” elements. 


Prove that the two principles of mathematical induction stated in Section 2.1 
are equivalent. 


Show that the Principle of Well-Ordering for the natural numbers implies that 
1 is the smallest natural number. Use this result to show that the Principle of 
Well-Ordering implies the Principle of Mathematical Induction; that is, show 
that if S C N such that 1 € S andn+1€S whenever n € S, then S=N. 


For each of the following pairs of numbers a and b, calculate gcd(a, b) and 
find integers r and s such that gcd(a,b) = ra+ sb. 


(a) 14 and 39 (d) 471 and 562 
(b) 234 and 165 (c) 23,771 and 19,945 
(c) 1739 and 9923 (f) —4357 and 3754 


Let a and b be nonzero integers. If there exist integers r and s such that 
ar + bs = 1, show that a and 0b are relatively prime. 


Fibonacci Numbers. The Fibonacci numbers are 
1,1, 2,3,5,8,13,21,.... 


We can define them inductively by f; =1, fo =1, and frie = fniit fn for 
neN. 


(a) Prove that f, < 2”. 

(b) Prove that fn4ifn—1 = f2+(-1)", n> 2. 

(c) Prove that f, = [(1+V5)* — (1— V/5)"]/2°vV5. 
(d) Show that limp oo fn/fn41 = (V5 — 1)/2. 

(e) Prove that f, and f,+1 are relatively prime. 
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19. 


20. 


21. 


22. 


23. 


24. 
25. 
26. 


27. 
28. 
29. 
30. 
31. 
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. Let a and b be integers such that gcd(a, b) = 1. Let r and s be integers such 
that ar + bs = 1. Prove that 


gcd(a, s) = ged(r, b) = ged(r, s) = 1. 
Let x,y € N be relatively prime. If xy is a perfect square, prove that x and y 
must both be perfect squares. 


Using the division algorithm, show that every perfect square is of the form 
4k or 4k + 1 for some nonnegative integer k. 


Suppose that a,b,r,s are pairwise relatively prime and that 
CLP =— 
a? — b? = 58. 

Prove that a, r, and s are odd and 0 is even. 


Let n € N. Use the division algorithm to prove that every integer is congruent 
mod n to precisely one of the integers 0,1,...,n—1. Conclude that if r is 
an integer, then there is exactly one s in Z such that 0 < s < n and [r] = [s]. 
Hence, the integers are indeed partitioned by congruence mod n. 


Define the least common multiple of two nonzero integers a and 6, 
denoted by Icm(a, b), to be the nonnegative integer m such that both a and b 
divide m, and if a and b divide any other integer n, then m also divides n. 
Prove that any two integers a and b have a unique least common multiple. 


If d = gcd(a, b) and m = Icm(a, b), prove that dm = |ab|. 
Show that lcm(a, b) = ab if and only if gcd(a, b) = 1. 


Prove that gcd(a,c) = gcd(b, c) = 1 if and only if gcd(ab, c) = 1 for integers 
a, b, and c. 


Let a,b,c € Z. Prove that if gcd(a,b) = 1 and a | bc, then a | c. 

Let p > 2. Prove that if 2? — 1 is prime, then p must also be prime. 
Prove that there are an infinite number of primes of the form 6n + 1. 
Prove that there are an infinite number of primes of the form 4n — 1. 


Using the fact that 2 is prime, show that there do not exist integers p and 
q such that p? = 2q?. Demonstrate that therefore /2 cannot be a rational 
number. 
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Programming Exercises 


1. 


The Sieve of Eratosthenes. One method of computing all of the prime 
numbers less than a certain fixed positive integer N is to list all of the numbers 
n such that 1 <n < N. Begin by eliminating all of the multiples of 2. Next 
eliminate all of the multiples of 3. Now eliminate all of the multiples of 
5. Notice that 4 has already been crossed out. Continue in this manner, 
noticing that we do not have to go all the way to N; it suffices to stop at VN. 
Using this method, compute all of the prime numbers less than N = 250. 
We can also use this method to find all of the integers that are relatively 
prime to an integer N. Simply eliminate the prime factors of N and all of 
their multiples. Using this method, find all of the numbers that are relatively 
prime to N = 120. Using the Sieve of Eratosthenes, write a program that will 
compute all of the primes less than an integer N. 


. Let N° = Nu {0}. Ackermann’s function is the function A: N° x N° + N° 


defined by the equations 


A(0,y)=y+1, 
A(z + 1,0) = A(z, 1), 
A(z+1,yt+1) = A(z, A(x + 1,y)). 


Use this definition to compute A(3,1). Write a program to evaluate Acker- 
mann’s function. Modify the program to count the number of statements 
executed in the program when Ackermann’s function is evaluated. How many 
statements are executed in the evaluation of A(4,1)? What about A(5,1)? 


. Write a computer program that will implement the Euclidean algorithm. The 


program should accept two positive integers a and b as input and should 
output gcd(a, b) as well as integers r and s such that 


gcd(a,b) = ra + sb. 
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Sage Sage’s original purpose was to support research in number theory, so 
it is perfect for the types of computations with the integers that we have in 
this chapter. 


Groups 


We begin our study of algebraic structures by investigating sets associated 
with single operations that satisfy certain reasonable axioms; that is, we want 
to define an operation on a set in a way that will generalize such familiar 
structures as the integers Z together with the single operation of addition, 
or invertible 2 x 2 matrices together with the single operation of matrix 
multiplication. The integers and the 2 x 2 matrices, together with their 
respective single operations, are examples of algebraic structures known as 
groups. 

The theory of groups occupies a central position in mathematics. Modern 
group theory arose from an attempt to find the roots of a polynomial in 
terms of its coefficients. Groups now play a central role in such areas as 
coding theory, counting, and the study of symmetries; many areas of biology, 
chemistry, and physics have benefited from group theory. 


3.1 Integer Equivalence Classes and Symmetries 


Let us now investigate some mathematical structures that can be viewed as 
sets with single operations. 


The Integers mod n 


The integers mod n have become indispensable in the theory and applications 
of algebra. In mathematics they are used in cryptography, coding theory, 
and the detection of errors in identification codes. 

We have already seen that two integers a and b are equivalent mod n if n 
divides a— b. The integers mod n also partition Z into n different equivalence 
classes; we will denote the set of these equivalence classes by Z,,. Consider 
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the integers modulo 12 and the corresponding partition of the integers: 


(o] = {..., —12,0, 12, 24, ...}, 
[1] = {...,—11, 1, 13, 25,...}, 


[11] = {...,-1, 11, 23,35, ...}. 


When no confusion can arise, we will use 0,1,...,11 to indicate the equiva- 
lence classes [0], [1],..., [11] respectively. We can do arithmetic on Z,,. For 
two integers a and b, define addition modulo n to be (a+b) (mod n); that is, 
the remainder when a + 0 is divided by n. Similarly, multiplication modulo 
n is defined as (ab) (mod n), the remainder when ab is divided by n. 


Table 3.1. Multiplication table for Zg 


-|/0 1 2 3 4 5 6 7 
0/0 0 0 0 0 0 0 0 
1;0 1 2 3 4 5 6 7 
2/0 2 4 6 0 2 4 6 
3/0 3 6 1 4 7 2 °5 
4/0 4 0 4 0 4 0 4 
5/0 5 2 7 4 1 6 3 
6/0 6 4 2 0 6 4 2 
7/0 7 6 5 4 3 2 1 


Example 1. The following examples illustrate integer arithmetic modulo n: 


7+4=1 (mod 5) 7-3=1 (mod 5) 
3+5=0 (mod 8) 3-5=7 (mod 8) 
3+4=7 (mod 12) 3-4=0 (mod 12). 


In particular, notice that it is possible that the product of two nonzero 
numbers modulo n can be equivalent to 0 modulo n. a 


Example 2. Most, but not all, of the usual laws of arithmetic hold for 
addition and multiplication in Z,. For instance, it is not necessarily true 
that there is a multiplicative inverse. Consider the multiplication table for 
Zg in Table 3.1. Notice that 2, 4, and 6 do not have multiplicative inverses; 


3.1 INTEGER EQUIVALENCE CLASSES AND SYMMETRIES 39 


that is, for n = 2, 4, or 6, there is no integer k such that kn = 1 (mod 8). 
| 


Proposition 3.1 Let Z,, be the set of equivalence classes of the integers 
mod n and a,b,c € Zn. 


1. Addition and multiplication are commutative: 
a+b=b+a _ (mod n) 
ab=ba (mod n). 


2. Addition and multiplication are associative: 


(a+b) +c=a+(b+c) (mod n) 
(ab)c = a(bc) (mod n). 


3. There are both an additive and a multiplicative identity: 
a+0=a (mod n) 
a-l=a (mod n). 
4. Multiplication distributes over addition: 


a(b+c)=ab+ac (mod n). 


5. For every integer a there is an additive inverse —a: 
a+(-—a)=0 (mod n). 


6. Leta be a nonzero integer. Then gcd(a,n) = 1 if and only if there exists 
a multiplicative inverse b for a (mod n); that is, a nonzero integer b 
such that 

ab=1 (mod n). 


PROOF. We will prove (1) and (6) and leave the remaining properties to be 
proven in the exercises. 

(1) Addition and multiplication are commutative modulo n since the 
remainder of a+b divided by n is the same as the remainder of b+ a divided 
by n. 
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(6) Suppose that gced(a,n) = 1. Then there exist integers r and s such 
that ar+ns = 1. Since ns = 1— ar, ra=1 (mod n). Letting b be the 
equivalence class of r, ab = 1 (mod n). 

Conversely, suppose that there exists a b such that ab = 1 (mod n). 
Then n divides ab — 1, so there is an integer k such that ab — nk = 1. Let 
d = gcd(a,n). Since d divides ab — nk, d must also divide 1; hence, d = 1. 


Symmetries 
Figure 3.1. Rigid motions of a rectangle 
A B 
identity 
D C D C 
A D 
180° 
rotation 
D A 
A A 
reflection 
ed 
vertical axis 
D D 
A C 
reflection 
horizontal axis 
D B 


A symmetry of a geometric figure is a rearrangement of the figure 
preserving the arrangement of its sides and vertices as well as its distances 
and angles. A map from the plane to itself preserving the symmetry of an 
object is called a rigid motion. For example, if we look at the rectangle in 
Figure 3.1, it is easy to see that a rotation of 180° or 360° returns a rectangle 
in the plane with the same orientation as the original rectangle and the same 
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relationship among the vertices. A reflection of the rectangle across either 
the vertical axis or the horizontal axis can also be seen to be a symmetry. 
However, a 90° rotation in either direction cannot be a symmetry unless the 
rectangle is a square. 


Figure 3.2. Symmetries of a triangle 


B B 
identity van ABC 
ro ea Be 
A C OA C 
B A 
rotation (A BC 
PL NB OC A 
A C C B 
B C 
rotation (A BC 
NO A JB 
A C B A 
B C 
reflection (A BC 
EE NAN OB 
A C OA B 
B B 
reflection fA Bie 
Be Gr Be A 
A C C A 
B A 


reflection {A BC 
POA Arie 
A Ce - B C 


Let us find the symmetries of the equilateral triangle AABC. To find a 
symmetry of AABC, we must first examine the permutations of the vertices 
A, B, and C and then ask if a permutation extends to a symmetry of the 
triangle. Recall that a permutation of a set S is a one-to-one and onto 
map 7:5 — S. The three vertices have 3! = 6 permutations, so the triangle 
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has at most six symmetries. To see that there are six permutations, observe 
there are three different possibilities for the first vertex, and two for the 
second, and the remaining vertex is determined by the placement of the first 
two. So we have 3-2-1 = 3! = 6 different arrangements. To denote the 
permutation of the vertices of an equilateral triangle that sends A to B, B 
to C, and C' to A, we write the array 


ABC 
ata 
Notice that this particular permutation corresponds to the rigid motion 
of rotating the triangle by 120° in a clockwise direction. In fact, every 
permutation gives rise to a symmetry of the triangle. All of these symmetries 
are shown in Figure 3.2. 

A natural question to ask is what happens if one motion of the triangle 
AABC is followed by another. Which symmetry is 4191; that is, what 
happens when we do the permutation p; and then the permutation 1? 
Remember that we are composing functions here. Although we usually multiply 
left to right, we compose functions right to left. We have 


(u1p1)(A) = 1 (p1(A)) = p(B) = C 
(uip1)(B) = wi(pi(B)) = (CC) = B 
(H1P1)(C) = Ha (p1(C)) = pa (A) = A. 


This is the same symmetry as pg. Suppose we do these motions in the 
opposite order, p; then pi. It is easy to determine that this is the same 
as the symmetry ju3; hence, pili A fipi. A multiplication table for the 
symmetries of an equilateral triangle A ABC is given in Table 3.2. 

Notice that in the multiplication table for the symmetries of an equilateral 
triangle, for every motion of the triangle a there is another motion a’ such 
that aa’ = id; that is, for every motion there is another motion that takes 
the triangle back to its original orientation. 


3.2 Definitions and Examples 


The integers mod n and the symmetries of a triangle or a rectangle are both 
examples of groups. A binary operation or law of composition on a set 
G is a function G x G — G that assigns to each pair (a,b) € G x G a unique 
element ao b, or ab in G, called the composition of a and b. A group (G,°) 
is a set G together with a law of composition (a,b) + ao b that satisfies the 
following axioms. 


3.2. DEFINITIONS AND EXAMPLES 43 


Table 3.2. Symmetries of an equilateral triangle 
o | id pi pe fa abs 
id | id py po fa po p38 
Pi} pi p2 td ps fa pe 
p2 | p2 td pi pez pg pa 
Hi | Hi M2 os td py pe 
M2 | M2 ws fi pe id py 
3 | 3 Mi He pi po id 


e The law of composition is associative. That is, 
(aob)oc=ao (boc) 
for a,b,c € G. 


e There exists an element e € G, called the identity element, such that 
for any element a € G 


eca=aore=—a. 


e For each element a € G, there exists an inverse element in G, 
denoted by a~!, such that 


A group G with the property that ao b = boa for all a,b © G is called 
abelian or commutative. Groups not satisfying this property are said to 
be nonabelian or noncommutative. 


Example 3. The integers Z = {...,—1,0,1,2,...} form a group under the 
operation of addition. The binary operation on two integers m,n € Z is just 
their sum. Since the integers under addition already have a well-established 
notation, we will use the operator + instead of o; that is, we shall write m+n 
instead of mon. The identity is 0, and the inverse of n € Z is written as —n 
instead of n~!. Notice that the integers under addition have the additional 
property that m+n=n-+™m and are therefore an abelian group. 8 


Most of the time we will write ab instead of ao b; however, if the group 
already has a natural operation such as addition in the integers, we will use 
that operation. That is, if we are adding two integers, we still write m+n, 
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Table 3.3. Cayley table for (Zs, +) 
1 2 3 4 


RwnNr o]+ 
RwWNH OO 
NRO WwW 
WNrFrOW®W 


OPRWN FH 
FOoOorRWW 


—n for the inverse, and 0 for the identity as usual. We also write m —n 
instead of m+ (—n). 

It is often convenient to describe a group in terms of an addition or 
multiplication table. Such a table is called a Cayley table. 


Example 4. The integers mod n form a group under addition modulo n. 
Consider Zs, consisting of the equivalence classes of the integers 0, 1, 2, 3, 
and 4. We define the group operation on Zs by modular addition. We write 
the binary operation on the group additively; that is, we write m+n. The 
element 0 is the identity of the group and each element in Z5 has an inverse. 
For instance, 2+3 = 3+4+2=0. Table 3.3 is a Cayley table for Z5. By 
Proposition 3.1, Z, = {0,1,...,2—1} is a group under the binary operation 
of addition mod n. | 


Example 5. Not every set with a binary operation is a group. For example, 
if we let modular multiplication be the binary operation on Z,, then Z,, fails 
to be a group. The element 1 acts as a group identity since 1-k=k-1l=k 
for any k € Z,; however, a multiplicative inverse for 0 does not exist since 
0-k =k-0=0 for every k in Z,. Even if we consider the set Z,, \ {0}, 
we still may not have a group. For instance, let 2 € Ze. Then 2 has no 
multiplicative inverse since 


By Proposition 3.1, every nonzero k does have an inverse in Z, if k is 
relatively prime to n. Denote the set of all such nonzero elements in Z, by 
U(n). Then U(n) is a group called the group of units of Z,. Table 3.4 is 
a Cayley table for the group U(8). | 
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Table 3.4. Multiplication table for U(8) 


-[1 3 5 7 
ii 2 
3/3 17 5 
5/5 7 1 3 
Clo a 


Example 6. The symmetries of an equilateral triangle described in Sec- 
tion 3.1 form a nonabelian group. As we observed, it is not necessarily true 
that a8 = Ba for two symmetries a and @. Using Table 3.2, which is a 
Cayley table for this group, we can easily check that the symmetries of an 
equilateral triangle are indeed a group. We will denote this group by either 
S3 or D3, for reasons that will be explained later. a 


Example 7. We use M2(R) to denote the set of all 2 x 2 matrices. Let 
GL»2(R) be the subset of M2(R) consisting of invertible matrices; that is, a 


matrix 
a b 
a=(0 9) 


is in GL2(R) if there exists a matrix A~! such that AA~! = A“!A = J, 
where I is the 2 x 2 identity matrix. For A to have an inverse is equivalent to 
requiring that the determinant of A be nonzero; that is, det A = ad — bc # 0. 
The set of invertible matrices forms a group called the general linear group. 
The identity of the group is the identity matrix 


The inverse of A € GL2(R) is 


ad—be\-c aj) 
The product of two invertible matrices is again invertible. Matrix multipli- 
cation is associative, satisfying the other group axiom. For matrices it is 


not true in general that AB = BA; hence, GL2(R) is another example of a 
nonabelian group. | 
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Example 8. Let 


where 12 = —1. Then the relations J? = J? = K? = -1, IJ = K, JK =T, 
KI = J, JI = —kK, KJ = —I, and Ik = —J hold. The set Qg = 
{+1,+/,+J,+K} is a group called the quaternion group. Notice that Qs 
is noncommutative. | 


Example 9. Let C* be the set of nonzero complex numbers. Under the 
operation of multiplication C* forms a group. The identity is 1. If z= a+ bi 
is a nonzero complex number, then 


sh ae et 


a2 +82 
is the inverse of z. It is easy to see that the remaining group axioms hold. 


A group is finite, or has finite order, if it contains a finite number of 
elements; otherwise, the group is said to be infinite or to have infinite 
order. The order of a finite group is the number of elements that it contains. 
If G is a group containing n elements, we write |G| =n. The group Zs is a 
finite group of order 5; the integers Z form an infinite group under addition, 
and we sometimes write |Z| = oo. 


Basic Properties of Groups 


Proposition 3.2 The identity element in a group G is unique; that is, there 
exists only one element e € G such that eg = ge = g for allg EG. 


PROOF. Suppose that e and e’ are both identities in G. Then eg = ge = g 
and e'g = ge’ = g for all g € G. We need to show that e = e’. If we think 
of e as the identity, then ee’ = e’; but if e’ is the identity, then ee’ = e. 
Combining these two equations, we have e = ee’ = e’. 


Inverses in a group are also unique. If g’ and g” are both inverses of an 
element g in a group G, then gg’ = g'g = e and gg” = g"g =e. We want 
to show that g/ = g”, but g/ = ge = g'(gq") = (¢'9)9" = eg" = g". We 
summarize this fact in the following proposition. 
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Proposition 3.3 If g is any element in a group G, then the inverse of g, 


g ', is unique. 


Proposition 3.4 Let G be a group. If a,b € G, then (ab)~' =b- a7. 


Proor. Let a,b € G. Then abb-!a~! = aea~! = aa~! = e. Similarly, 


b-!a~tab = e. But by the previous proposition, inverses are unique; hence, 
(Gb pta-*, 


Proposition 3.5 Let G be a group. For anya € G, (a~')~! =a. 


PROOF. Observe that a~'(a~!)~! = e. Consequently, multiplying both sides 
of this equation by a, we have 


(a) S ea) S aaa) jae a. 


It makes sense to write equations with group elements and group opera- 
tions. If a and 6 are two elements in a group G, does there exist an element 
x €G such that ax = 6? If such an x does exist, is it unique? The following 
proposition answers both of these questions positively. 


Proposition 3.6 Let G be a group anda and b be any two elements in G. 
Then the equations ax = b and xa = b have unique solutions in G. 


PROOF. Suppose that az = b. We must show that such an 2 exists. 
Multiplying both sides of az = b by a~!, we have x = ex = a~!ax = ab. 
To show uniqueness, suppose that x; and x2 are both solutions of ax = 6; 
then az, = b = axa. So x} = a !ax, = a axa = xg. The proof for the 
existence and uniqueness of the solution of xa = 6 is similar. 


Proposition 3.7 If G is a group and a,b,c € G, then ba = ca implies b= c 
and ab = ac implies b= c. 


This proposition tells us that the right and left cancellation laws 
are true in groups. We leave the proof as an exercise. 

We can use exponential notation for groups just as we do in ordinary 
algebra. If G is a group and g € G, then we define g? = e. For n € N, we 
define 

g” =9°9°-'9 
a 


n times 


and 


n times 
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Theorem 3.8 In a group, the usual laws of exponents hold; that is, for all 
g,heG, 


1. gg” =g™"™ for allm,n € Z; 


2. (g”)" =g"™ for allm,n € Z; 
3. (gh)"” = (h7'g7!)-” for alln € Z. Furthermore, if G is abelian, then 
(gh)" = gh" 


We will leave the proof of this theorem as an exercise. Notice that 
(gh)" 4 g"h” in general, since the group may not be abelian. If the group 
is Z or Zn, we write the group operation additively and the exponential 
operation multiplicatively; that is, we write ng instead of g”. The laws of 
exponents now become 


1. mg+ng =(m+n)g for all m,n € Z; 
2. m(ng) = (mn)qg for all m,n € Z; 
3. m(g +h) =mg4+ mh for all n € Z. 


It is important to realize that the last statement can be made only because 
Z and Z, are commutative groups. 


Historical Note | 


Although the first clear axiomatic definition of a group was not given until the 
late 1800s, group-theoretic methods had been employed before this time in the 
development of many areas of mathematics, including geometry and the theory of 
algebraic equations. 

Joseph-Louis Lagrange used group-theoretic methods in a 1770-1771 memoir to 
study methods of solving polynomial equations. Later, Evariste Galois (1811-1832) 
succeeded in developing the mathematics necessary to determine exactly which 
polynomial equations could be solved in terms of the polynomials’ coefficients. 
Galois’ primary tool was group theory. 

The study of geometry was revolutionized in 1872 when Felix Klein proposed 
that geometric spaces should be studied by examining those properties that are 
invariant under a transformation of the space. Sophus Lie, a contemporary of Klein, 
used group theory to study solutions of partial differential equations. One of the 
first modern treatments of group theory appeared in William Burnside’s The Theory 
of Groups of Finite Order [1], first published in 1897. [_—__] 
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3.3 Subgroups 


Definitions and Examples 


Sometimes we wish to investigate smaller groups sitting inside a larger group. 
The set of even integers 2Z = {...,—2,0,2,4,...} is a group under the 
operation of addition. This smaller group sits naturally inside of the group 
of integers under addition. We define a subgroup H of a group G to bea 
subset H of G such that when the group operation of G is restricted to H, 
HT is a group in its own right. Observe that every group G with at least two 
elements will always have at least two subgroups, the subgroup consisting of 
the identity element alone and the entire group itself. The subgroup H = {e} 
of a group G is called the trivial subgroup. A subgroup that is a proper 
subset of G is called a proper subgroup. In many of the examples that we 
have investigated up to this point, there exist other subgroups besides the 
trivial and improper subgroups. 


Example 10. Consider the set of nonzero real numbers, R*, with the group 
operation of multiplication. The identity of this group is 1 and the inverse 
of any element a € R* is just 1/a. We will show that 


Q = {p/q: pand gare nonzero integers} 


is a subgroup of R*. The identity of R* is 1; however, 1 = 1/1 is the quotient 
of two nonzero integers. Hence, the identity of R* is in Q*. Given two 
elements in Q*, say p/q and r/s, their product pr/qs is also in Q*. The 
inverse of any element p/q € Q* is again in Q* since (p/q)~! = q/p. Since 
multiplication in R* is associative, multiplication in Q* is associative. B 


Example 11. Recall that C* is the multiplicative group of nonzero complex 
numbers. Let H = {1,—1,7,—7}. Then H is a subgroup of C*. It is quite 
easy to verify that H is a group under multiplication and that H C C*. 


Example 12. Let SZ2(R) be the subset of GLZ2(R) consisting of matrices 
of determinant one; that is, a matrix 


a b 
a) 
is in SL2(R) exactly when ad — bc = 1. To show that SL2(R) is a subgroup 
of the general linear group, we must show that it is a group under matrix 
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multiplication. The 2 x 2 identity matrix is in SZ2(R), as is the inverse of 
the matrix A: 
a(t 2). 
—c a 


It remains to show that multiplication is closed; that is, that the product of 
two matrices of determinant one also has determinant one. We will leave this 
task as an exercise. The group SL2(R) is called the special linear group. 
| 


Example 13. It is important to realize that a subset H of a group G can 
be a group without being a subgroup of G. For H to be a subgroup of G 
it must inherit G’s binary operation. The set of all 2 x 2 matrices, M(R), 
forms a group under the operation of addition. The 2 x 2 general linear 
group is a subset of M2(R) and is a group under matrix multiplication, but 
it is not a subgroup of Ma(R). If we add two invertible matrices, we do not 
necessarily obtain another invertible matrix. Observe that 


1 0), (-1 0)_(0 0 
0 1 0 -1/ \O OJ’ 
but the zero matrix is not in GL2(R). a 


Example 14. One way of telling whether or not two groups are the same 
is by examining their subgroups. Other than the trivial subgroup and the 
group itself, the group Z, has a single subgroup consisting of the elements 
0 and 2. From the group Zz, we can form another group of four elements 
as follows. As a set this group is Zo x Zz. We perform the group operation 
coordinatewise; that is, (a,b) + (c,d) = (a+c,b+d). Table 3.5 is an addition 
table for Zz x Za. Since there are three nontrivial proper subgroups of 
Za X Zo, Ay = {(0, 0), (0, 1)}, Ay = {(0, 0), (1,0)}, and H3 = {(0, 0), (1; 1)}, 
Za and Zo x Zo must be different groups. | 


Table 3.5. Addition table for Zz x Zo 
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Some Subgroup Theorems 


Let us examine some criteria for determining exactly when a subset of a 
group is a subgroup. 


Proposition 3.9 A subset H of G is a subgroup if and only if it satisfies 
the following conditions. 


1. The identity e of G is in H. 
2. If hy, ho € A, then hyhg € A. 
3... Fe H, then h7 eH. 


PROOF. First suppose that H is a subgroup of G. We must show that 
the three conditions hold. Since H is a group, it must have an identity ey. 
We must show that ey = e, where e is the identity of G. We know that 
eyey = ey and that eey = eye = ex; hence, eey = eyey. By right-hand 
cancellation, e = ey. The second condition holds since a subgroup H is a 
group. To prove the third condition, let h € H. Since H is a group, there is 
an element h’ € H such that hh’ = h'h = e. By the uniqueness of the inverse 
mG, Shr 

Conversely, if the three conditions hold, we must show that H is a 
group under the same operation as G; however, these conditions plus the 
associativity of the binary operation are exactly the axioms stated in the 
definition of a group. 


Proposition 3.10 Let H be a subset of a group G. Then H is a subgroup 
of G if and only if H A, and whenever g,h € H then gh! is in H. 


Proor. Let H be a nonempty subset of G. Then H contains some element 
g. So gg-| =e is in H. If g € H, then eg~! = g™! is also in H. Finally, 
let g,h € H. We must show that their product is also in H. However, 
g(h-!)-! = gh € H. Hence, H is indeed a subgroup of G. Conversely, if 
g and h are in H, we want to show that gh~! € H. Since h is in H, its 
inverse h~! must also be in H. Because of the closure of the group operation, 
gh-| € H. 


Exercises 


1. Find all x € Z satisfying each of the following equations. 
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(a) 32 = 2 (mod 7) (d) 9x = 3 (mod 5) 
(b) 5a+1=13 (mod 23) (e) 5x =1 (mod 6) 
(c) 5a +1=13 (mod 26) (f) 32 =1 (mod 6) 


Which of the following multiplication tables defined on the set G = {a, b,c, d} 
form a group? Support your answer in each case. 


ola b cd ofa b cd 
aja coda aja b cd 
(a) b}|b b ec d (c) b]}/ b c¢ dia 
c|ece da b c/c da b 
d|jd a ob ec dj|d a ob ec 
ofa b cd ofa b cd 
ala b cd aja b cd 
(b) b}]b a dec (4d) b}|b acd 
c|e da b c|ec b a d 
d|d co bia dj|d db ec 


. Write out Cayley tables for groups formed by the symmetries of a rectangle 


and for (Z4,+). How many elements are in each group? Are the groups the 
same? Why or why not? 


. Describe the symmetries of a rhombus and prove that the set of symmetries 


forms a group. Give Cayley tables for both the symmetries of a rectangle and 
the symmetries of a rhombus. Are the symmetries of a rectangle and those of 
a rhombus the same? 


. Describe the symmetries of a square and prove that the set of symmetries is 


a group. Give a Cayley table for the symmetries. How many ways can the 
vertices of a square be permuted? Is each permutation necessarily a symmetry 
of the square? The symmetry group of the square is denoted by D4. 


. Give a multiplication table for the group U(12). 
. Let S =R\ {—1} and define a binary operation on S by axb=a+b-+ab. 


Prove that (S,*) is an abelian group. 


. Give an example of two elements A and B in GL2(R) with AB 4 BA. 
. Prove that the product of two matrices in SD2(R) has determinant one. 


10. 


Prove that the set of matrices of the form 


1 
0 
0 


ors 
rFPrxe 
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11. 


12. 


13. 
14. 


15. 
16. 


17. 


18. 


19. 


20. 


21. 


22. 
23. 


is a group under matrix multiplication. This group, known as the Heisen- 
berg group, is important in quantum physics. Matrix multiplication in the 
Heisenberg group is defined by 


1 a2 y\ fl 2 y Ll ata yty +22 
0 1 2z 0 1 2)]=1]0 1 z+2! 
0 0 1 0 0 1 0 0 1 


Prove that det(AB) = det(A) det(B) in GL2(R). Use this result to show that 
the binary operation in the group GL2(R) is closed; that is, if A and B are 
in GL2(R), then AB € GL2(R). 


Let Z} = {(a1,d2,...,@n) : a; € Zo}. Define a binary operation on Z} by 
(1, @2,---,@n) + (b1, b2,..-, On) = (a1 + b1, a2 + be,..-, An + dn). 


Prove that Z} is a group under this operation. This group is important in 
algebraic coding theory. 


Show that R* = R \ {0} is a group under the operation of multiplication. 


Given the groups R* and Z, let G = R* x Z. Define a binary operation o on G 
by (a,m) o (b,n) = (ab,m +n). Show that G is a group under this operation. 


Prove or disprove that every group containing six elements is abelian. 


Give a specific example of some group G and elements g,h € G where 
(gh)” A grh". 

Give an example of three different groups with eight elements. Why are the 
groups different? 


Show that there are n! permutations of a set containing n items. 


Show that 
0+a=a+0=a (mod n) 


for alla € Zp. 


Prove that there is a multiplicative identity for the integers modulo n: 
a-l=a (mod n). 
For each a € Z, find a b € Z,, such that 
a+b=b+a=0 (modn). 
Show that addition and multiplication mod n are associative operations. 
Show that multiplication distributes over addition modulo n: 


a(b+c)=ab+ac (mod n). 
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25. 


26. 
27. 


28. 


29. 


30. 


3l. 


32. 


33. 


34. 


30. 


36. 
37. 


38. 
39. 
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. Let a and b be elements in a group G. Prove that ab"a~! = (aba~')” for 
ne. 


Let U(n) be the group of units in Z,,. If n > 2, prove that there is an element 
k € U(n) such that k? = 1 andk #1. 
Prove that the inverse of 9,92---gn is gn ‘gp 1 --- 9] 


Prove the remainder of Proposition 3.6: if G is a group and a,b € G, then 
the equation xa = b has unique solutions in G. 


Prove Theorem 3.8. 


Prove the right and left cancellation laws for a group G; that is, show that in 
the group G, ba = ca implies 6 = c and ab = ac implies b = c for elements 
a,b,c EG. 


Show that if a? = e for all elements a in a group G, then G must be abelian. 


Show that if G is a finite group of even order, then there is an a € G such 
that a is not the identity and a? = e. 


Let G be a group and suppose that (ab)? = a?b? for all a and b in G. Prove 
that G is an abelian group. 


Find all the subgroups of Z3 x Z3. Use this information to show that Z3 x Z3 
is not the same group as Zo. (See Example 14 for a short description of the 
product of groups.) 


Find all the subgroups of the symmetry group of an equilateral triangle. 
Compute the subgroups of the symmetry group of a square. 
Let H = {2":k € Z}. Show that H is a subgroup of Q*. 


Let n = 0,1,2,... and nZ = {nk :k € Z}. Prove that nZ is a subgroup of Z. 
Show that these subgroups are the only subgroups of Z. 


Let T = {z € C*: |z| = 1}. Prove that T is a subgroup of C*. 


Let G consist of the 2 x 2 matrices of the form 
cos@? —sind 
sin@  cos@ 
where 0 € R. Prove that G is a subgroup of SL2(R). 
Prove that 
G = {a+bvV2: a,b € Q and a and b are not both zero} 


is a subgroup of R* under the group operation of multiplication. 
& & 
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Let G be the group of 2 x 2 matrices under addition and 


w{(e Joos 


Prove that H is a subgroup of G. 


Prove or disprove: SL2(Z), the set of 2 x 2 matrices with integer entries and 
determinant one, is a subgroup of SL2(R). 


List the subgroups of the quaternion group, Qs. 


Prove that the intersection of two subgroups of a group G is also a subgroup 
of G. 


Prove or disprove: If H and K are subgroups of a group G, then HU K isa 
subgroup of G. 


Prove or disprove: If H and K are subgroups of a group G, then HK = {hk: 
he H andk € K} is a subgroup of G. What if G is abelian? 


Let G be a group and g € G. Show that 
Z(G) ={x eG: gr =2¢4 for allg Ee G} 


is a subgroup of G. This subgroup is called the center of G. 


Let a and b be elements of a group G. If a4b = ba and a® = e, prove that 
ab = ba. 


Give an example of an infinite group in which every nontrivial subgroup is 
infinite. 


Give an example of an infinite group in which every proper subgroup is finite. 
If zy = «~'y7! for all x and y in G, prove that G must be abelian. 
If (xy)? = ay for all 2 and y in G, prove that G must be abelian. 


Prove or disprove: Every nontrivial subgroup of an nonabelian group is 
nonabelian. 


Let H be a subgroup of G and 
C(H) ={g€G: gh=hg for allhe H}. 


Prove C(H) is a subgroup of G. This subgroup is called the centralizer of 
AinG. 


Let H be a subgroup of G. If g € G, show that gHg~' is also a subgroup of 
G. 
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0 SO000"" 3004 7e "6 


Figure 3.3. A UPC code 


Additional Exercises: Detecting Errors 


Credit card companies, banks, book publishers, and supermarkets all take advantage 
of the properties of integer arithmetic modulo n and group theory to obtain error 
detection schemes for the identification codes that they use. 


1. UPC Symbols. Universal Product Code (UPC) symbols are now found on 
most products in grocery and retail stores. The UPC symbol is a 12-digit code 
identifying the manufacturer of a product and the product itself (Figure 3.3). 
The first 11 digits contain information about the product; the twelfth digit is 
used for error detection. If dyd2---d 2 is a valid UPC number, then 


(a) Show that the UPC number 0-50000-30042-6, which appears in Fig- 
ure 3.3, is a valid UPC number. 

(b) Show that the number 0-50000-30043-6 is not a valid UPC number. 

(c) Write a formula to calculate the check digit, dj2, in the UPC number. 


(d) The UPC error detection scheme can detect most transposition errors; 
that is, it can determine if two digits have been interchanged. Show 
that the transposition error 0-05000-30042-6 is not detected. Find a 
transposition error that is detected. Can you find a general rule for the 
types of transposition errors that can be detected? 


(e) Write a program that will determine whether or not a UPC number is 
valid. 


2. It is often useful to use an inner product notation for this type of error 
detection scheme; hence, we will use the notion 


(di, do,...,dx) * (wi, Wa,-..,W,) = 0 (mod n) 
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to mean 


dyw, + dgwe+-:-+d,w,=0 (mod n). 


Suppose that (di, d2,...,dx)- (wi, wWe,...,We) =0 (mod n) is an error detec- 
tion scheme for the k-digit identification number d;d2---dz, where 0 < d; <n. 
Prove that all single-digit errors are detected if and only if gcd(w;,n) = 1 for 
1<i<k. 


3. Let (di,do,...,dx) - (wi, we,...,we) = 0 (mod n) be an error detection 
scheme for the k-digit identification number d,d2---d,, where 0 < d; < n. 
Prove that all transposition errors of two digits dj and d; are detected if and 
only if ged(w; — w;,n) = 1 for i and j between 1 and k. 


4. ISBN Codes. Every book has an International Standard Book Number 
(ISBN) code. This is a 10-digit code indicating the book’s publisher and title. 
The tenth digit is a check digit satisfying 


(di, do,..., dio) + (10,9,...,1) =0 (mod 11). 


One problem is that djg might have to be a 10 to make the inner product zero; 
in this case, 11 digits would be needed to make this scheme work. Therefore, 
the character X is used for the eleventh digit. So ISBN 3-540-96035-X is a 
valid ISBN code. 


(a) Is ISBN 0-534-91500-0 a valid ISBN code? What about ISBN 0-534- 
91700-0 and ISBN 0-534-19500-0? 


(b) Does this method detect all single-digit errors? What about all transpo- 
sition errors? 


(c) How many different ISBN codes are there? 


(d) Write a computer program that will calculate the check digit for the 
first nine digits of an ISBN code. 


(e) A publisher has houses in Germany and the United States. Its German 
prefix is 3-540. If its United States prefix will be 0-abc, find abc such 
that the rest of the ISBN code will be the same for a book printed in 
Germany and in the United States. Under the ISBN coding method 
the first digit identifies the language; German is 3 and English is 0. 
The next group of numbers identifies the publisher, and the last group 
identifies the specific book. 
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Sage The first half of this text is about group theory. Sage includes 
GAP, a program designed primarly for just group theory, and in continuous 
development since 1986. Many of Sage’s computations for groups ultimately 
are performed by GAP. 


[4 


Cyclic Groups 


The groups Z and Z,, which are among the most familiar and easily under- 
stood groups, are both examples of what are called cyclic groups. In this 
chapter we will study the properties of cyclic groups and cyclic subgroups, 
which play a fundamental part in the classification of all abelian groups. 


4.1 Cyclic Subgroups 


Often a subgroup will depend entirely on a single element of the group; 
that is, knowing that particular element will allow us to compute any other 
element in the subgroup. 


Example 1. Suppose that we consider 3 € Z and look at all multiples (both 
positive and negative) of 3. As a set, this is 


3Z = {...,—3,0,3,6,...}. 


It is easy to see that 3Z is a subgroup of the integers. This subgroup is 
completely determined by the element 3 since we can obtain all of the other 
elements of the group by taking multiples of 3. Every element in the subgroup 
is “generated” by 3. a 


Example 2. If H = {2”:n € Z}, then H is a subgroup of the multiplicative 
group of nonzero rational numbers, Q*. If a = 2” and b = 2” are in H, then 
ab-! = 2™2-" — 9™—" ig also in H. By Proposition 3.10, H is a subgroup 
of Q* determined by the element 2. | 
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Theorem 4.1 Let G be a group and a be any element in G. Then the set 
(a) ={a* sk € Zh 


is a subgroup of G. Furthermore, (a) is the smallest subgroup of G that 
contains a. 


Proor. The identity is in (a) since a = e. If g and h are any two elements 
in (a), then by the definition of (a) we can write g = a” and h = a” for some 
integers m and n. So gh = a™a” = a™*" js again in (a). Finally, if g = a” in 
(a), then the inverse g~' = a~” is also in (a). Clearly, any subgroup H of G 
containing a must contain all the powers of a by closure; hence, H contains 
(a). Therefore, (a) is the smallest subgroup of G' containing a. 


Remark. If we are using the “+” notation, as in the case of the integers 
under addition, we write (a) = {na: ne Z}. 


For a € G, we call (a) the cyclic subgroup generated by a. If G contains 
some element a such that G = (a), then G is a cyclic group. In this case a 
is a generator of G. If a is an element of a group G, we define the order 
of a to be the smallest positive integer n such that a” = e, and we write 
|a| = n. If there is no such integer n, we say that the order of a is infinite 
and write |a| = oo to denote the order of a. 


Example 3. Notice that a cyclic group can have more than a single generator. 
Both 1 and 5 generate Ze; hence, Ze is a cyclic group. Not every element in 
a cyclic group is necessarily a generator of the group. The order of 2 € Z¢ is 
3. The cyclic subgroup generated by 2 is (2) = {0, 2,4}. | 


The groups Z and Z,, are cyclic groups. The elements 1 and —1 are 
generators for Z. We can certainly generate Z,, with 1 although there may 
be other generators of Z,, as in the case of Zg. 


Example 4. The group of units, U(9), in Zo is a cyclic group. As a set, 
U(9) is {1,2,4,5, 7,8}. The element 2 is a generator for U(9) since 

2220: 2e=4 

RSs. 2Se 

7 a ee 
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Example 5. Not every group is a cyclic group. Consider the symmetry 
group of an equilateral triangle $3. The multiplication table for this group 
is Table 3.2. The subgroups of $3 are shown in Figure 4.1. Notice that every 


subgroup is cyclic; however, no single element generates the entire group. 
a 


ttl Ct 


{id,pi,p2} {id,wi} — {id, ua} {td 3} 


OR ee 


{id} 
Figure 4.1. Subgroups of $3 


Theorem 4.2 Every cyclic group is abelian. 


ProoFr. Let G be a cyclic group and a € G be a generator for G. If g and h 
are in G, then they can be written as powers of a, say g = a” and h = a’. 
Since 


rT 1s r+s 


gh=a'a® =a 


a? =e a" = ha; 


G is abelian. 


Subgroups of Cyclic Groups 


We can ask some interesting questions about cyclic subgroups of a group 
and subgroups of a cyclic group. If G is a group, which subgroups of G are 
cyclic? If G is a cyclic group, what type of subgroups does G possess? 


Theorem 4.3 Every subgroup of a cyclic group is cyclic. 


PROOF. The main tools used in this proof are the division algorithm and 
the Principle of Well-Ordering. Let G be a cyclic group generated by a and 
suppose that H is a subgroup of G. If H = {e}, then trivially H is cyclic. 
Suppose that H contains some other element g distinct from the identity. 
Then g can be written as a” for some integer n. We can assume that n > 0. 
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Let m be the smallest natural number such that a” € H. Such an m exists 
by the Principle of Well-Ordering. 

We claim that h = a™ is a generator for H. We must show that every 
h’ € H can be written as a power of h. Since h’ € H and H is a subgroup of 
G, h’ = a* for some positive integer k. Using the division algorithm, we can 
find numbers q and r such that k = mq +r where 0 < r < m; hence, 


a® = g™T = (g™)Ig" = hia". 


So a’ = a*h~4. Since a* and h~@ are in H, a” must also be in H. However, 
m was the smallest positive number such that a™ was in H; consequently, 
r =O and so k = mq. Therefore, 


h’ = ak =a™ =h! 


and H is generated by h. 
Corollary 4.4 The subgroups of Z are exactly nZ for n = 0,1,2,.... 


Proposition 4.5 Let G be a cyclic group of order n and suppose that a is 
a generator for G. Then a* = e if and only if n divides k. 


Proor. First suppose that a* = e. By the division algorithm, k = nq +r 
where 0 <r <n; hence, 


k qratt 


e=a = =a™a" = ea" =a’. 


Since the smallest positive integer m such that a™ =e is n, r = 0. 
Conversely, if n divides k, then k = ns for some integer s. Consequently, 


Theorem 4.6 Let G be a cyclic group of order n and suppose thata EG 
is a generator of the group. If b = a®, then the order of b is n/d, where 
d = gcd(k, n). 


PRoor. We wish to find the smallest integer m such that e = b” = ak™. 
By Proposition 4.5, this is the smallest integer m such that n divides km or, 
equivalently, n/d divides m(k/d). Since d is the greatest common divisor of 
n and k, n/d and k/d are relatively prime. Hence, for n/d to divide m(k/d) 
it must divide m. The smallest such m is n/d. 
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Corollary 4.7 The generators of Z, are the integers r such that 1 <r<n 
and gced(r,n) = 1. 


Example 6. Let us examine the group Z1g. The numbers 1, 3, 5, 7, 9, 11, 
13, and 15 are the elements of Z1g that are relatively prime to 16. Each of 
these elements generates Zig. For example, 


1-:9=9 2:-9=2 3-9=11 
4-9=4 5-9=13 6-9=6 
7-9=15 8-9=8 9-9=1 


10-9=10 11-9=3 12-9=12 
13-9=5 14:9=14 15:9=7. 


4.2 Multiplicative Group of Complex Numbers 
The complex numbers are defined as 


C={a+bi:a,beR}, 
where 7? = —1. If z = a+ bi, then a is the real part of z and b is the 
imaginary part of z. 
To add two complex numbers z = a+ bi and w = c+ di, we just add the 
corresponding real and imaginary parts: 


z+w=(a+bi)+(c+di) =(at+ce)+(b4+d)i. 


Remembering that i? = —1, we multiply complex numbers just like polyno- 
mials. The product of z and w is 


(a + bi)(c + di) = ac + bdi? + adi + bei = (ac — bd) + (ad + be)i. 


Every nonzero complex number z = a+ bi has a multiplicative inverse; 
that is, there exists a z~! € C* such that zz~! = z-!z = 1. If z=a+bi, 


then 
ay. CH 


a2 +b?" 
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The complex conjugate of a complex number z = a + bi is defined to be 
z=a-—bi. The absolute value or modulus of z = a+ bi is |z| = Va? + b?. 


Example 7. Let z= 2+ 32 and w = 1-— 27. Then 


ztw=(2+3i)+(1-2i)=3+i 


and 
zw = (2+ 3i)(1 — 27) = 8-1. 
Also, 
Ce eee 
13. 13 
|2\= 4/13 
Z=2-—31 
|_| 
| 
21 =243i 
23 = —-34+21- 
0 x 
“29 =1-22 


Figure 4.2. Rectangular coordinates of a complex number 


There are several ways of graphically representing complex numbers. We 
can represent a complex number z = a+ bi as an ordered pair on the xy 
plane where a is the x (or real) coordinate and 6 is the y (or imaginary) 
coordinate. This is called the rectangular or Cartesian representation. 
The rectangular representations of z1 = 2+ 32, z2 = 1 — 2%, and z3 = —3+ 27 
are depicted in Figure 4.2. 

Nonzero complex numbers can also be represented using polar coordi- 
nates. To specify any nonzero point on the plane, it suffices to give an angle 
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+ 


at bi 


Figure 4.3. Polar coordinates of a complex number 


@ from the positive x axis in the counterclockwise direction and a distance r 
from the origin, as in Figure 4.3. We can see that 


z=a+bi=r(cos#+isin6). 


Hence, 
r=|z)=Ver +" 
and 
a=rcos0é 
b=rsind. 


We sometimes abbreviate r(cos@ + isin@) as rcis@. To assure that the 
representation of z is well-defined, we also require that 0° < 6 < 360°. If the 
measurement is in radians, then 0 < @ < 27. 


Example 8. Suppose that z = 2cis60°. Then 
a = 2cos60° = 1 


and 
b = 2sin60° = V3. 


Hence, the rectangular representation is z = 1+ V3i. 
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Conversely, if we are given a rectangular representation of a complex 
number, it is often useful to know the number’s polar representation. If 


z= 3/2 —3,/2i, then 
r=vVa2+b?=V36=6 


and : 
6 = arctan (2) = arctan(—1) = 315°, 
a 


80 3\/2 — 3\/2i = 6cis315°. a 


The polar representation of a complex number makes it easy to find prod- 
ucts and powers of complex numbers. The proof of the following proposition 
is straightforward and is left as an exercise. 


Proposition 4.8 Let z = rcis@ and w = scisd¢ be two nonzero complex 
numbers. Then 
zw =rscis(@+ ¢). 


Example 9. If z = 3cis(7/3) and w = 2 cis(7/6), then zw = 6 cis(7/2) = 62. 
| 


Theorem 4.9 (DeMoivre) Let z =rcis@ be a nonzero complex number. 
Then 
[r cis 6]” = r” cis(n@) 


fOr WH "1s Dae x 


PROOF. We will use induction on n. For n = 1 the theorem is trivial. 
Assume that the theorem is true for all k such that 1< k <n. Then 


= r"(cosn@ + isin né)r(cos @ + isin 6) 
= r"*"I(cosné cos @ — sinné sin @) + i(sin nO cos 6 + cos né sin 6)| 
= r"*"{cos(n6 + 0) + isin(nd + 6)| 


=r"*"Icos(n + 1)6 + isin(n + 1)6]. 
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Example 10. Suppose that z = 1 +i and we wish to compute z!°. Rather 
than computing (1 +2)! directly, it is much easier to switch to polar 
coordinates and calculate z!° using DeMoivre’s Theorem: 


70 _ (1 + i) 


= (View())" 


= (V2)!° cis (=) 
= 32cis (5) 
= 324. 


The Circle Group and the Roots of Unity 


The multiplicative group of the complex numbers, C*, possesses some inter- 
esting subgroups. Whereas Q* and R* have no interesting subgroups of finite 
order, C* has many. We first consider the circle group, 


T={zeC: |a|=1}. 
The following proposition is a direct result of Proposition 4.8. 
Proposition 4.10 The circle group is a subgroup of C*. 


Although the circle group has infinite order, it has many interesting finite 
subgroups. Suppose that H = {1,—1,i,—i}. Then AH is a subgroup of the 
circle group. Also, 1, —1, 7, and —7 are exactly those complex numbers that 
satisfy the equation z4 = 1. The complex numbers satisfying the equation 
z” = 1 are called the nth roots of unity. 


Theorem 4.11 Jf z” = 1, then the nth roots of unity are 


; (=) 
z=cis | — ], 
n 


where k =0,1,...,2 —1. Furthermore, the nth roots of unity form a cyclic 
subgroup of T of order n. 
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PrRooFr. By DeMoivre’s Theorem, 
2k 
2 = cis (n=) =nis2ki) = 1. 


The z’s are distinct since the numbers 2k7/n are all distinct and are greater 
than or equal to 0 but less than 27. The fact that these are all of the roots 
of the equation z” = 1 follows from from Corollary 17.6, which states that a 
polynomial of degree n can have at most n roots. We will leave the proof 
that the nth roots of unity form a cyclic subgroup of T as an exercise. 


A generator for the group of the nth roots of unity is called a primitive 
nth root of unity. 


Example 11. The 8th roots of unity can be represented as eight equally 
spaced points on the unit circle (Figure 4.4). The primitive 8th roots of 
unity are 


2° 9° 
D 
2° 9 
5 vB VB 
w? = —— — ij 
2 2 
ei a2 4/2. 
wi = — — —F, 
2 2 


4.3. The Method of Repeated Squares! 


Computing large powers can be very time-consuming. Just as anyone can 
compute 2? or as everyone knows how to compute 


91000000 
2 : 


However, such numbers are so large that we do not want to attempt the 
calculations; moreover, past a certain point the computations would not be 
feasible even if we had every computer in the world at our disposal. Even 
writing down the decimal representation of a very large number may not be 


'The results in this section are needed only in Chapter 7. 
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Figure 4.4. 8th roots of unity 


reasonable. It could be thousands or even millions of digits long. However, if 
we could compute something like 23739833? (mod 46389), we could very easily 
write the result down since it would be a number between 0 and 46,388. If 
we want to compute powers modulo n quickly and efficiently, we will have to 
be clever. 

The first thing to notice is that any number a can be written as the sum 
of distinct powers of 2; that is, we can write 


a= 2h 4 9h 4... 4 2h, 


where ky < kg <--- < ky. This is just the binary representation of a. 
For example, the binary representation of 57 is 111001, since we can write 
57 = 29423 + 2% 42°. 

The laws of exponents still work in Z,,; that is, if b= a” (mod n) and 
c =a (mod n), then bc = a?t+¥ (mod n). We can compute a2 (mod n) in 
k multiplications by computing 


a2 (mod n) 


a2 (mod n) 


a” (mod n). 
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Each step involves squaring the answer obtained in the previous step, dividing 
by n, and taking the remainder. 
Example 12. We will compute 271°*! (mod 481). Notice that 
321 = 2° + 2° + 28; 
hence, computing 271°?! (mod 481) is the same as computing 
O72 tS So a7 271? Guod: 481), 
So it will suffice to compute 2712 (mod 481) where i = 0,6,8. It is very 
easy to see that 
2717 = 73,441 (mod 481) 
= 329 (mod 481). 
We can square this result to obtain a value for 271?” (mod 481): 
2712 = (2712')? (mod 481) 
= (329)? (mod 481) 
= 1,082,411 (mod 481) 
=16 (mod 481). 
gnt+l 


We are using the fact that (a?")? = a??" =a 
can calculate 


(mod n). Continuing, we 


2712> = 419 (mod 481) 
and 
2717 =16 (mod 481). 
Therefore, 
27132) = 2712°+2°+2" (mod 481) 
= 271?" .2712° 2717" (mod 481) 
= 271-419-16 (mod 481) 
= 1,816,784 (mod 481) 
=47 (mod 481). 
= 


The method of repeated squares will prove to be a very useful tool when 
we explore RSA cryptography in Chapter 7. To encode and decode messages 
in a reasonable manner under this scheme, it is necessary to be able to 
quickly compute large powers of integers mod n. 


EXERCISES 71 


Exercises 


1. Prove or disprove each of the following statements. 


(a) U(8) is cyclic. 


b) All of the generators of Zgq are prime. 


—~ => 


c) Qis cyclic. 


—~ 


d) If every proper subgroup of a group G is cyclic, then G is a cyclic group. 


— 


e) A group with a finite number of subgroups is finite. 


2. Find the order of each of the following elements. 


(a) 5€ Zio (c) V3 € R* (ec) 72 in Zo49 
(b) VZER (d) -i€C* (f) 312 in Zari 


3. List all of the elements in each of the following subgroups. 


(a) The subgroup of Z generated by 7 
The subgroup of Zo4 generated by 15 
All subgroups of Zj2 

All subgroups of Zgo 

All subgroups of Zi3 

All subgroups of Zag 


) 
) 
) 
) 
) 
(g) The subgroup generated by 3 in U(20) 
(h) The subgroup generated by 5 in U(18) 
) The subgroup of R* generated by 7 
) The subgroup of C* generated by i where i? = —1 
) The subgroup of C* generated by 2% 
) The subgroup of C* generated by (1 + i)//2 
(m) The subgroup of C* generated by (1 + V37)/2 


4. Find the subgroups of G(R) generated by each of the following matrices. 
Ga Bes, wes) 
oE sy) OG a) Oo (Se vn) 


5. Find the order of every element in Zi. 


6. Find the order of every element in the symmetry group of the square, D4. 
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11. 
12. 


13. 


14. 


15. 


16. 


17. 


18. 
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. What are all of the cyclic subgroups of the quaternion group, Qs? 
. List all of the cyclic subgroups of U(30). 
. List every generator of each subgroup of order 8 in Za. 


10. 


66? 


Find all elements of finite order in each of the following groups. Here the “x 
indicates the set with zero removed. 


(a) Z (b) @ (c) R* 


If a?4 = e in a group G, what are the possible orders of a? 


Find a cyclic group with exactly one generator. Can you find cyclic groups 
with exactly two generators? Four generators? How about n generators? 


For n < 20, which groups U(n) are cyclic? Make a conjecture as to what is 
true in general. Can you prove your conjecture? 


0 1 0 -1 
iO: ae BeOS) 


be elements in GLZ2(R). Show that A and B have finite orders but AB does 
not. 


Let 


Evaluate each of the following. 


(a) (3 — 22) + (5i — 6) (d) (9—1)(9 —7) 
Ta; _ A) 45 


(b) (4— 5%) — (47-4) (e) 
(c) (5 — 4i)(7 +24) (f) 


(l+a+(1+i 


wa 


Convert the following complex numbers to the form a + bi. 


(a) 2cis(7/6) (c) 3cis(z) 
(b) 5cis(97/4) (d) cis(77/4) /2 


Change the following complex numbers to polar representation. 


(a) 1-2 (c) 2+2i (e) —3% 
(b) —5 (d) V3+i (f) 26+ 2V3 


Calculate each of the following expressions. 
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19. 


20. 


21. 


22. 


23. 


24. 
25. 


26. 
27. 


28. 


29. 
30. 


3l. 


(a) (14a) () (1-a/2)" 
—7)6 

ee (f) (-v3— v2” 

(a) (-a) (2) (-2+28)-° 


(a) lzl = 2| (d) |z+u| < [2] + [wl 
(b) 22 =|2I? (e) |2z— w| = [lz] — [wll 
(c) 2-1 = 2/2? (f) |zw| = [2|[e| 


List and graph the 6th roots of unity. What are the generators of this group? 
What are the primitive 6th roots of unity? 


List and graph the 5th roots of unity. What are the generators of this group? 
What are the primitive 5th roots of unity? 


Calculate each of the following. 


(a) 2923171 (mod 582) (c) 20719521 (mod 4724) 
(b) 255734! (mod 5681) (d) 97182! (mod 765) 


Let a,b € G. Prove the following statements. 
(a) The order of a is the same as the order of a~!. 
(b) For all g € G, |a| = |g~tagl. 
(c) The order of ab is the same as the order of ba. 
Let p and q be distinct primes. How many generators does Z,, have? 


Let p be prime and r be a positive integer. How many generators does Zpr 
have? 


Prove that Z, has no nontrivial subgroups if p is prime. 


If g and h have orders 15 and 16 respectively in a group G, what is the order 
of (g) Nh)? 


Let a be an element in a group G. What is a generator for the subgroup 
(a™) M1 (a")? 


Prove that Z, has an even number of generators for n > 2. 


Suppose that G is a group and let a, b € G. Prove that if ja] =m and |b| =n 
with gcd(m,n) = 1, then (a) M (b) = {e}. 


Let G be an abelian group. Show that the elements of finite order in G form 
a subgroup. This subgroup is called the torsion subgroup of G. 
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32 


33. 


34. 


35. 
36. 


37. 
38. 


39. 
AO. 


Al. 
42. 
43. 
4A. 
45. 
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. Let G be a finite cyclic group of order n generated by 2. Show that if y = «* 
where gcd(k,n) = 1, then y must be a generator of G. 


If G is an abelian group that contains a pair of cyclic subgroups of order 2, 
show that G must contain a subgroup of order 4. Does this subgroup have to 
be cyclic? 


Let G be an abelian group of order pg where gcd(p,q) = 1. If G contains 
elements a and b of order p and q respectively, then show that G is cyclic. 


Prove that the subgroups of Z are exactly nZ for n = 0,1,2,.... 


Prove that the generators of Z,, are the integers r such that 1 < r <n and 
gcd(r,n) = 1. 


Prove that if G has no proper nontrivial subgroups, then G' is a cyclic group. 


Prove that the order of an element in a cyclic group G must divide the order 
of the group. 


For what integers n is —1 an nth root of unity? 


If z = r(cosé + isin@) and w = s(cos¢+isin¢) are two nonzero complex 
numbers, show that 


zw = rs|cos(@ + ¢) +isin(@ + ¢)]. 


Prove that the circle group is a subgroup of C*. 

Prove that the nth roots of unity form a cyclic subgroup of T of order n. 
Prove that a” = 1 and a” = 1 if and only if a? = 1 for d = ged(m,n). 
Let z € C*. If |z| 4.1, prove that the order of z is infinite. 


Let z = cos@+isin@ be in T where 0 € Q. Prove that the order of z is 
infinite. 


Programming Exercises 


1 


Write a computer program that will write any decimal number as the sum 
of distinct powers of 2. What is the largest integer that your program will 
handle? 


. Write a computer program to calculate a* (mod n) by the method of repeated 
squares. What are the largest values of n and x that your program will accept? 
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Sage Sage support for cyclic groups is a little spotty — but this situation 
could change soon. 


a) 


Permutation Groups 


Permutation groups are central to the study of geometric symmetries and to 
Galois theory, the study of finding solutions of polynomial equations. They 
also provide abundant examples of nonabelian groups. 

Let us recall for a moment the symmetries of the equilateral triangle 
AABC from Chapter 3. The symmetries actually consist of permutations 
of the three vertices, where a permutation of the set S = {A,B,C} isa 
one-to-one and onto map 7: S > S. The three vertices have the following 
six permutations. 


ABC ABC ABC 
ABC C AB BCA 
ABC ABC ABC 
AC B CBA BAC 
We have used the array 
ABC 
BCA 


to denote the permutation that sends A to B, B to C, and C' to A. That is, 


Aw B 
BHC 
CHA. 


The symmetries of a triangle form a group. In this chapter we will study 
groups of this type. 
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5.1 Definitions and Notation 


In general, the permutations of a set X form a group Sx. If X is a finite 
set, we can assume X = {1,2,...,n}. In this case we write S,, instead of 
Sx. The following theorem says that S;, is a group. We call this group the 
symmetric group on n letters. 


Theorem 5.1 The symmetric group on n letters, S,, is a group with n! 
elements, where the binary operation is the composition of maps. 


PROOF. The identity of S,, is just the identity map that sends 1 to 1, 2 to 
2,...,n ton. If f : Sp 3 Sp is a permutation, then f—! exists, since f is 
one-to-one and onto; hence, every permutation has an inverse. Composition 
of maps is associative, which makes the group operation associative. We 


leave the proof that |S,,| =n! as an exercise. 


A subgroup of S,, is called a permutation group. 


Example 1. Consider the subgroup G of $5 consisting of the identity 
permutation id and the permutations 


4 

lI 

eae 

We 
Nw NWN WWD 
Pw rw Ww 


ao KBR ow 
or ot 
Se 


eal 
Were 


The following table tells us how to multiply elements in the permutation 
group G. 


° | id O09 T 4p 
id|id oF T Up 
a|o id w T 
T/T pw id o 
wile tT oa id 


Remark. Though it is natural to multiply elements in a group from left to 
right, functions are composed from right to left. Let o and 7 be permutations 
onaset X. To compose o and 7 as functions, we calculate (cor) (x) = o(r(x)). 
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That is, we do 7 first, then o. There are several ways to approach this 
inconsistency. We will adopt the convention of multiplying permutations 
right to left. To compute ot, dot first and then o. That is, by or(x) we 
mean o(7(x)). (Another way of solving this problem would be to write 
functions on the right; that is, instead of writing a(x), we could write (x)o. 
We could also multiply permutations left to right to agree with the usual 
way of multiplying elements in a group. Certainly all of these methods have 
been used. 


Example 2. Permutation multiplication is not usually commutative. Let 


fh IB A 

OS Nie i. 83 

ee 

PNG. fe Ae a 
Then 

ye eae 

PES Nid oy 
but 


Cycle Notation 


The notation that we have used to represent permutations up to this point is 
cumbersome, to say the least. To work effectively with permutation groups, 
we need a more streamlined method of writing down and manipulating 
permutations. 

A permutation 0 € Sx is a cycle of length k if there exist elements 
@1,@2,...,@% © X such that 
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and o(x) = « for all other elements x € X. We will write (a1, a2,...,a,) to 
denote the cycle o. Cycles are the building blocks of all permutations. 


Example 3. The permutation 


123 4 5 6 7 
o=(5 acl. 2 7) = (162354) 
is a cycle of length 6, whereas 
12 3 4 5 6 
al A) Bo 5 5) = (2) 


is a cycle of length 3. 
Not every permutation is a cycle. Consider the permutation 


123 4 5 6 
(3 oe 5) = (1248(66). 


This permutation actually contains a cycle of length 2 and a cycle of length 4. 
| 


Example 4. It is very easy to compute products of cycles. Suppose that 
o = (1352) and 7 = (256). 
If we think of o as 
1H 3, 3H 5, OF 2, 21, 


and T as 
25, 5H 6, 6H 2, 


then for or remembering that we apply 7 first and then o, it must be the 
case that 
Lr 3, 34 5, DF 6, 6H 21, 


or oT = (1356). If w = (1634), then op = (1652)(34). a 
Two cycles in Sx, 0 = (a1,a2,...,a%) and T = (bj, bo,..., by), are dis- 

joint if a; # b; for all 7 and 7. 

Example 5. The cycles (135) and (27) are disjoint; however, the cycles 

(135) and (347) are not. Calculating their products, we find that 


(135) (27) = (135)(27) 
(135)(347) = (13475). 
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The product of two cycles that are not disjoint may reduce to something less 
complicated; the product of disjoint cycles cannot be simplified. a 


Proposition 5.2 Let o and 7 be two disjoint cycles in Sx. Then ot =To. 


ProoF. Let o = (aj,a2,...,@,) and T = (b1,bo,...,0;). We must show 
that or(x) = To(x) for all  € X. If x is neither in {a1,a2,...,a,} nor 
{bj, b2,...,b;}, then both o and 7 fix x. That is, o(x) = x and r(x) = z. 
Hence, 


ort) = 6a) =e) js = Fe) = Tle (eh) — F(a): 


Do not forget that we are multiplying permutations right to left, which is 
the opposite of the order in which we usually multiply group elements. Now 
suppose that x € {a1,a2,...,ax}. Then o(ai) = 4 mod k)+1; that is, 


a, > ag 
a2 '> a3 


Ap—1'? ap 


Ak > ay. 


However, T(a;) = a; since o and 7 are disjoint. Therefore, 


Qi mod k)+1 


(i mod k)-41) 


T(o(a;)) 


= F005): 


Similarly, if x € {b), bo,...,b;}, then o and 7 also commute. 


Theorem 5.3 Every permutation in S;, can be written as the product of 
disjoint cycles. 


PrROooF. We can assume that X = {1,2,...,n}. Let o € S,,, and define X41 
to be {a(1),07(1),...}. The set X; is finite since X is finite. Now let i be 
the first integer in X that is not in X1 and define X2 by {a(i),o7(i),...}. 
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Again, X92 is a finite set. Continuing in this manner, we can define finite 
disjoint sets X3,X4,.... Since X is a finite set, we are guaranteed that this 
process will end and there will be only a finite number of these sets, say r. 
If o; is the cycle defined by 


cosets 


then o = 0109:--0,. Since the sets X1, X9,...,X, are disjoint, the cycles 
01,02,.-.,0r must also be disjoint. 


Example 6. Let 


_f1 2 3 4 5 6 
soa ge aan ae 
fl 2 Sort oe 6 
PAN 2 18 Gay 
Using cycle notation, we can write 

o = (1624) 

T = (13)(456) 

oT = (136) (245) 

To = (143) (256) 


Remark. From this point forward we will find it convenient to use cycle 
notation to represent permutations. When using cycle notation, we often 
denote the identity permutation by (1). 


Transpositions 


The simplest permutation is a cycle of length 2. Such cycles are called 
transpositions. Since 


(1, @2,.--+,An) = (G1Gn)(A1An_1) ++ (a1a3)(a1a2), 


any cycle can be written as the product of transpositions, leading to the 
following proposition. 


Proposition 5.4 Any permutation of a finite set containing at least two 
elements can be written as the product of transpositions. 
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Example 7. Consider the permutation 
(16)(253) = (16)(23)(25) = (16)(45) (23) (45) (25). 


As we can see, there is no unique way to represent permutation as the product 
of transpositions. For instance, we can write the identity permutation as 
(12)(12), as (13)(24)(13)(24), and in many other ways. However, as it turns 
out, no permutation can be written as the product of both an even number 
of transpositions and an odd number of transpositions. For instance, we 
could represent the permutation (16) by 


(23) (16) (23) 


or by 
(35)(16)(13)(16)(13)(35) (56), 


but (16) will always be the product of an odd number of transpositions. li 

Lemma 5.5 If the identity is written as the product of r transpositions, 
id = T1T2°+*Tr, 

then r is an even number. 


PRooF. We will employ induction on r. A transposition cannot be the 
identity; hence, r > 1. If r = 2, then we are done. Suppose that r > 2. In 
this case the product of the last two transpositions, 7,_17,, must be one of 
the following cases: 


(ab)(ab) = id 

(bc)(ab) = (ac)(bc) 
(cd)(ab) = (ab) (cd) 
(ac)(ab) = (ab) (bc), 


where a, b, c, and d are distinct. 
The first equation simply says that a transposition is its own inverse. If 
this case occurs, delete 7,_,7, from the product to obtain 


id = T1T2°++ + Tp—3Tp—2- 


By induction r — 2 is even; hence, r must be even. 
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In each of the other three cases, we can replace 7,17, with the right-hand 
side of the corresponding equation to obtain a new product of r transpositions 
for the identity. In this new product the last occurrence of a will be in the 
next-to-the-last transposition. We can continue this process with T,-2T;-—1 
to obtain either a product of r — 2 transpositions or a new product of r 
transpositions where the last occurrence of a is in 7,—2. If the identity is the 
product of r — 2 transpositions, then again we are done, by our induction 
hypothesis; otherwise, we will repeat the procedure with 7,_37,_2. 

At some point either we will have two adjacent, identical transpositions 
canceling each other out or a will be shuffled so that it will appear only in 
the first transposition. However, the latter case cannot occur, because the 
identity would not fix a in this instance. Therefore, the identity permutation 
must be the product of r — 2 transpositions and, again by our induction 
hypothesis, we are done. 


Theorem 5.6 Jf a permutation o can be expressed as the product of an even 
number of transpositions, then any other product of transpositions equaling 
a must also contain an even number of transpositions. Similarly, if o can 
be expressed as the product of an odd number of transpositions, then any 
other product of transpositions equaling o must also contain an odd number 
of transpositions. 


PROOF. Suppose that 
0 = 0102°** Om = T172°** Try 


where m is even. We must show that n is also an even number. The inverse 
of 0! is Om---o1. Since 


id = 00m-+*'01 =T1°°*TnOm**O1; 


n must be even by Lemma 5.5. The proof for the case in which o can be 
expressed as an odd number of transpositions is left as an exercise. 


In light of Theorem 5.6, we define a permutation to be even if it can be 
expressed as an even number of transpositions and odd if it can be expressed 
as an odd number of transpositions. 


The Alternating Groups 


One of the most important subgroups of S;, is the set of all even permutations, 
An. The group A, is called the alternating group on n letters. 
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Theorem 5.7 The set Ay is a subgroup of Sn. 


PROOF. Since the product of two even permutations must also be an even 
permutation, A, is closed. The identity is an even permutation and therefore 
is in A,. If o is an even permutation, then 


O = 0102°°'Or, 


where o; is a transposition and r is even. Since the inverse of any transposition 


is itself, 


gtl= OrOr—1°** Of 


is also in Ay. 


Proposition 5.8 The number of even permutations in Sy, n > 2, is equal 
to the number of odd permutations; hence, the order of Ap, is n!/2. 


PRooF. Let A, be the set of even permutations in S, and B,, be the set of 
odd permutations. If we can show that there is a bijection between these 
sets, they must contain the same number of elements. Fix a transposition 7 
in S,. Since n > 2, such ao exists. Define 


Ag : An 2 Bn 


by 
Age) Ser: 


Suppose that A(T) = A>(u). Then or = op and so 
t=0 lor= o top =p. 


Therefore, A, is one-to-one. We will leave the proof that A, is surjective to 
the reader. 


Example 8. The group A, is the subgroup of $4 consisting of even permu- 
tations. There are twelve elements in Ay: 


(1) (12) (34) (13) (24) (14) (23) 
(123) (132) (124) (142) 
(134) (143) (234) (243). 


One of the end-of-chapter exercises will be to write down all the subgroups 
of A4. You will find that there is no subgroup of order 6. Does this surprise 
you? | 
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Historical Note 


Lagrange first thought of permutations as functions from a set to itself, but it was 
Cauchy who developed the basic theorems and notation for permutations. He was 
the first to use cycle notation. Augustin-Louis Cauchy (1789-1857) was born in 
Paris at the height of the French Revolution. His family soon left Paris for the 
village of Arcueil to escape the Reign of Terror. One of the family’s neighbors there 
was Pierre-Simon Laplace (1749-1827), who encouraged him to seek a career in 
mathematics. Cauchy began his career as a mathematician by solving a problem 
in geometry given to him by Lagrange. Over 800 papers were written by Cauchy 
on such diverse topics as differential equations, finite groups, applied mathematics, 
and complex analysis. He was one of the mathematicians responsible for making 
calculus rigorous. Perhaps more theorems and concepts in mathematics have the 
name Cauchy attached to them than that of any other mathematician. [7 —__] 


Figure 5.1. A regular n-gon 


5.2 Dihedral Groups 


Another special type of permutation group is the dihedral group. Recall the 
symmetry group of an equilateral triangle in Chapter 3. Such groups consist 
of the rigid motions of a regular n-sided polygon or n-gon. For n = 3,4,..., 
we define the nth dihedral group to be the group of rigid motions of a 
regular n-gon. We will denote this group by D,. We can number the vertices 
of a regular n-gon by 1,2,..., (Figure 5.1). Notice that there are exactly 
n choices to replace the first vertex. If we replace the first vertex by k, then 
the second vertex must be replaced either by vertex & + 1 or by vertex k — 1; 
hence, there are 2n possible rigid motions of the n-gon. We summarize these 
results in the following theorem. 
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Theorem 5.9 The dihedral group, Dn, is a subgroup of Sp, of order 2n. 


rotation 
———> 


Figure 5.2. Rotations and reflections of a regular n-gon 


Theorem 5.10 The group Dn, n > 3, consists of all products of the two 
elements r and s, satisfying the relations 


; =i6, 
s? =id 
srs=rl. 


PROOF. The possible motions of a regular n-gon are either reflections or 
rotations (Figure 5.2). There are exactly n possible rotations: 


360° 
a 


OF Le, Pee Ce 
nN n 


We will denote the rotation 360°/n by r. The rotation r generates all of the 
other rotations. That is, 


360° 
re =k. : 
n 
Label the n reflections s1,s2,...,5n, where sz is the reflection that leaves 


vertex k fixed. There are two cases of reflection, depending on whether n 


5.2 
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Figure 5.3. Types of reflections of a regular n-gon 
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is even or odd. If there are an even number of vertices, then 2 vertices are 
left fixed by a reflection. If there are an odd number of vertices, then only 
a single vertex is left fixed by a reflection (Figure 5.3). In either case, the 
order of s, is two. Let s = s,. Then s? = id and r” = id. Since any rigid 
motion ¢ of the n-gon replaces the first vertex by the vertex k, the second 
vertex must be replaced by either k + 1 or by k — 1. If the second vertex is 
replaced by k + 1, then t = r*—!. If it is replaced by k — 1, then t = r*~'1s. 
Hence, r and s generate D,; that is, D, consists of all finite products of r 


and s. We will leave the proof that srs = r— 
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as an exercise. 
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Example 9. The group of rigid motions of a square, D4, consists of eight 

elements. With the vertices numbered 1, 2, 3, 4 (Figure 5.4), the rotations 
are 

r = (1234) 

?=(13)\4) 

r? = (1432) 


r* = id 
and the reflections are 


sy = (24) 
s2 = (13). 


The order of D4 is 8. The remaining two elements are 


ray = (12)(34) 
rs; = (14)(23). 


Figure 5.5. The motion group of a cube 


The Motion Group of a Cube 


We can investigate the groups of rigid motions of geometric objects other 
than a regular n-sided polygon to obtain interesting examples of permutation 
groups. Let us consider the group of rigid motions of a cube. One of the first 
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questions that we can ask about this group is “what is its order?” A cube 
has 6 sides. If a particular side is facing upward, then there are four possible 
rotations of the cube that will preserve the upward-facing side. Hence, the 
order of the group is 6-4 = 24. We have just proved the following proposition. 


Proposition 5.11 The group of rigid motions of a cube contains 24 ele- 
ments. 


Theorem 5.12 The group of rigid motions of a cube is S4. 


Kapaa =.5 SaaS a= oe ee ee eed 


Figure 5.6. Transpositions in the motion group of a cube 


PRooFr. From Proposition 5.11, we already know that the motion group of 
the cube has 24 elements, the same number of elements as there are in 54. 
There are exactly four diagonals in the cube. If we label these diagonals 1, 
2, 3, and 4, we must show that the motion group of the cube will give us 
any permutation of the diagonals (Figure 5.5). If we can obtain all of these 
permutations, then S4 and the group of rigid motions of the cube must be 
the same. To obtain a transposition we can rotate the cube 180° about the 
axis joining the midpoints of opposite edges (Figure 5.6). There are six such 
axes, giving all transpositions in S4. Since every element in Sy is the product 
of a finite number of transpositions, the motion group of a cube must be S4. 


Exercises 


1. Write the following permutations in cycle notation. 


90 
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e 2 3 4 5 - 123 4 5 
1 
¢ As 5 :) ( 5 1 4 ¥ 

123 4 5 " 123 4 5 
€ 25 1 :) (; 4 3 2 3) 

Compute each of the following 

(a) (1345) (234) (i) (123)(45) (1254) 

(b) (12)(1253) (j) (1254)! 

(c) (148) (23) (24) (k) |(1254)| 

(d) (1423) (34) (56) (1324) (1) |(1254)?| 

(e) (1254)(13)(25) (may (12) 4 

(f) (1254) (13)(25)? (n) (12537)? 

(g) (1254)~*(123) (45) (1254) (0) [(12)(34)(12)(47)]~* 

(h) (1254)?(123)(45) (p) [(1235)(467)}-* 


. Express the following permutations as products of transpositions and identify 


them as even or odd. 


(a) (14356) (d) (17254)(1423) (154632) 
(b) (156)(234) 
(c) (1426)(142) (e) (142637) 

. Find (a1, @2,...,@)71. 


. List all of the subgroups of S4. Find each of the following sets. 


(a) {ao € $4: a(1) = 3} 
(b) {o € Sq: 0(2) = 2} 
(c) {0 € S4: 0(1) =3 and o(2) = 2} 


Are any of these sets subgroups of $4? 


. Find all of the subgroups in Ay. What is the order of each subgroup? 
. Find all possible orders of elements in S7 and Av. 

. Show that Ajo contains an element of order 15. 

. Does Ag contain an element of order 26? 


10. 


Find an element of largest order in S,, for n = 3,...,10. 


EXERCISES 91 


11 


12. 


13. 


14. 


15. 


16. 


17. 
18. 
19. 
20. 


21. 


22. 


23. 
24. 
25. 


26. 


27. 


28. 


. What are the possible cycle structures of elements of As? What about Ag? 


Let o € S;, have order n. Show that for all integers i and j, 0’ = o/ if and 
only if i= j (mod n). 


Let 0 = 01---Om € Sy» be the product of disjoint cycles. Prove that the order 
of o is the least common multiple of the lengths of the cycles o1,...,0m.- 


Using cycle notation, list the elements in D;. What are r and s? Write every 
element as a product of r and s. 


If the diagonals of a cube are labeled as Figure 5.5, to which motion of 
the cube does the permutation (12)(34) correspond? What about the other 
permutations of the diagonals? 


Find the group of rigid motions of a tetrahedron. Show that this is the same 
group as Ay. 


Prove that S,, is nonabelian for n > 3. 
Show that A, is nonabelian for n > 4. 
Prove that D, is nonabelian for n > 3. 


Let 0 € S,. Prove that o can be written as the product of at most n — 1 
transpositions. 


Let o € S,. If o is not a cycle, prove that o can be written as the product of 
at most n — 2 transpositions. 


If o can be expressed as an odd number of transpositions, show that any 
other product of transpositions equaling 0 must also be odd. 


If o is a cycle of odd length, prove that o? is also a cycle. 
Show that a 3-cycle is an even permutation. 


Prove that in A, with n > 3, any permutation is a product of cycles of 
length 3. 


Prove that any element in S,, can be written as a finite product of the following 
permutations. 


(a) (12), (13),...,(1n) 
(b) (12), (23),...,(n—1,n) 
(c) (12), (12...) 


Let G be a group and define a map A, : G > G by Ag(a) = ga. Prove that 
Ag is a permutation of G. 


Prove that there exist n! permutations of a set containing n elements. 
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29. Recall that the center of a group G is 
Z(G) ={g€ G: gu = 2g for all x € G}. 


Find the center of Dg. What about the center of Dj 9? What is the center of 
Dy? 
30. Let 7 = (a1, d2,...,a@,) be a cycle of length k. 
(a) Prove that if o is any permutation, then 


ota * = (a(a1),0(a2),.--,0(ax)) 


is a cycle of length k. 
(b) Let y be a cycle of length k. Prove that there is a permutation o such 
that oro! = p. 
31. For wand £ in S,,, define a ~ @ if there exists an a € Si, such that cao! = 8. 
Show that ~ is an equivalence relation on Sy. 
32. Let o € Sx. If o"(x) = y, we will say that x ~ y. 
(a) Show that ~ is an equivalence relation on X. 
(b) If o € Ay and r € S,, show that t~to7T € An. 
(c) Define the orbit of x € X under o € Sx to be the set 


Oro ={y:2~ y}. 
Compute the orbits of a, 3,y where 


(1254) 
(123) (45) 
(13) (25). 


I 


a 
Bp 
Y 


(d) If Or,6 NM Oyo #9, prove that Oz,.¢ = Oy... The orbits under a permu- 
tation o are the equivalence classes corresponding to the equivalence 
relation ~. 

(e) A subgroup H of Sx is transitive if for every x,y € X, there exists 
ao € H such that o(x) = y. Prove that (c) is transitive if and only if 
O,,¢ = X for some x € X. 


33. Let a € S;, for n > 3. If aG = Ba for all 6 € S;,, prove that a must be the 
identity permutation; hence, the center of $;, is the trivial subgroup. 


34. If a is even, prove that a7! is also even. Does a corresponding result hold if 
a is odd? 


35. Show that a~!8-'a@ is even for a, 8 € Sy. 
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36. Let r and s be the elements in D,, described in Theorem 5.10. 


(a) Show that srs = r—}. 
(b) Show that r*s = sr—* in Dy. 
(c) Prove that the order of r® € Dy, is n/ gcd(k,n). 
Sage A permutation group is a very concrete representation of a group, 


and Sage support for permutations groups is very good — making Sage a 
natural place for beginners to learn about group theory. 
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Cosets and Lagrange’s 
Theorem 


Lagrange’s Theorem, one of the most important results in finite group theory, 
states that the order of a subgroup must divide the order of the group. This 
theorem provides a powerful tool for analyzing finite groups; it gives us an 
idea of exactly what type of subgroups we might expect a finite group to 
possess. Central to understanding Lagranges’s Theorem is the notion of a 
coset. 


6.1 Cosets 


Let G be a group and H a subgroup of G. Define a left coset of H with 
representative g € G to be the set 


gH ={gh:he H}. 
Right cosets can be defined similarly by 
Hg={hg:he H}. 


If left and right cosets coincide or if it is clear from the context to which type 
of coset that we are referring, we will use the word coset without specifying 
left or right. 


Example 1. Let H be the subgroup of Ze consisting of the elements 0 and 
3. The cosets are 

0+ H=3+4+4H = {0,3} 

1+H=4+4H = {1,4} 

2pH =54 7 = {2,5}. 
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We will always write the cosets of subgroups of Z and Z,, with the additive 
notation we have used for cosets here. In a commutative group, left and 
right cosets are always identical. | 


Example 2. Let H be the subgroup of $3 defined by the permutations 
{(1), (123), (132)}. The left cosets of H are 


(Ue (123) A = (2 = Fe (1238) 132) t 
(2).2 = (13) 2-= 23) = {(12), 13); 23) 
The right cosets of H are exactly the same as the left cosets: 
AL) = (123) #7132) = 4 (1) 3193) 132) } 
A(12) = H(18): = 8 (23). =4(12),,(13)5 (23)} 


It is not always the case that a left coset is the same as a right coset. Let 
K be the subgroup of S3 defined by the permutations {(1), (12)}. Then the 
left cosets of KK are 


(1)K = (12)K = {(1), (12)} 
(13)K = (123)K = {(13), (123)} 
(23)K = (132)K = {(23), (132)}; 


however, the right cosets of K are 


The following lemma is quite useful when dealing with cosets. (We leave 
its proof as an exercise.) 


Lemma 6.1 Let H be a subgroup of a group G and suppose that gi, 92 € G. 
The following conditions are equivalent. 


1. mH = gH; 
2 Ho, =H: 


3. nH Cc 92H; 
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4. 92 € 9H; 
5. 9,92 eH. 


In all of our examples the cosets of a subgroup H partition the larger 
group G. The following theorem proclaims that this will always be the case. 


Theorem 6.2 Let H be a subgroup of a group G. Then the left cosets of H 
in G partition G. That is, the group G is the disjoint union of the left cosets 
of H inG. 


ProoF. Let g,H and g2H be two cosets of H in G. We must show that 
either gj, HN goH = 0 or g,H = goH. Suppose that g, HM goH 4 @ and 
a€ gH gH. Then by the definition of a left coset, a = gjhi = gohe 
for some elements h; and ha in H. Hence, g; = gohah;* or gi € go. By 
Lemma 6.1, 91H = goH. 


Remark. There is nothing special in this theorem about left cosets. Right 
cosets also partition G; the proof of this fact is exactly the same as the proof 
for left cosets except that all group multiplications are done on the opposite 
side of H. 


Let G be a group and H be a subgroup of G. Define the index of H 
in G to be the number of left cosets of H in G. We will denote the index 
by [G: H]. 


Example 3. Let G = Z¢ and H = {0,3}. Then [G: H] =3. a 


Example 4. Suppose that G = $3, H = {(1), (123), (132)}, and kK = 
{(1), (12)}. Then [G : H] = 2 and [G: K] =3. a 


Theorem 6.3 Let H be a subgroup of a group G. The number of left cosets 
of H in G is the same as the number of right cosets of H in G. 


Proor. Let Ly and Ry denote the set of left and right cosets of H in 
G, respectively. If we can define a bijective map @: Ly > Ry, then the 
theorem will be proved. If gH € Ly, let (gH) = Hg~!. By Lemma 6.1, 
the map ¢ is well-defined; that is, if gj H = goH, then Hg. = Hg," To 
show that ¢ is one-to-one, suppose that 


Hg,' = ¢(mH) = 6(g2H) = Hgy'. 


Again by Lemma 6.1, gH = g2H. The map ¢ is onto since ¢(g-'H) = Hg. 
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6.2 Lagrange’s Theorem 


Proposition 6.4 Let H be a subgroup of G with g € G and define a map 
@: H > gH by o(h) = gh. The map ¢ is bijective; hence, the number of 
elements in H is the same as the number of elements in gH. 


PROOF. We first show that the map ¢ is one-to-one. Suppose that ¢(h1) = 
o(h2) for elements h1, hg € H. We must show that hi = he, but d(hi) = ghi 
and $(h2) = ghz. So ghy = gh, and by left cancellation hy = hg. To show 
that ¢ is onto is easy. By definition every element of gH is of the form gh 
for some h € H and ¢(h) = gh. 


Theorem 6.5 (Lagrange) Let G be a finite group and let H be a subgroup 
of G. Then |G|/|H| = [G: H] is the number of distinct left cosets of H in 
G. In particular, the number of elements in H must divide the number of 
elements in G. 


ProoFr. The group G is partitioned into [G : H] distinct left cosets. Each 
left coset has |H| elements; therefore, |G| = |G: H]|H]. 


Corollary 6.6 Suppose that G is a finite group and g € G. Then the order 
of g must divide the number of elements in G. 


Corollary 6.7 Let |G| = p with p a prime number. Then G is cyclic and 
any g © G such that g # e is a generator. 


PROOF. Let g be in G such that g 4 e. Then by Corollary 6.6, the order of 
g must divide the order of the group. Since |(g)| > 1, it must be p. Hence, g 
generates G. 


Corollary 6.7 suggests that groups of prime order p must somehow look 
like Zp. 


Corollary 6.8 Let H and K be subgroups of a finite group G such that 
GDHDK. Then 

IG: kK] =|G: H\[H: K). 
PROOF. Observe that 

IG] _ |G| [A 


T= Tee Tay IR 


=|G?H||A =k], 
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The converse of Lagrange’s Theorem is false. The group A, has 
order 12; however, it can be shown that it does not possess a subgroup of 
order 6. According to Lagrange’s Theorem, subgroups of a group of order 12 
can have orders of either 1, 2, 3, 4, or 6. However, we are not guaranteed that 
subgroups of every possible order exist. To prove that A, has no subgroup 
of order 6, we will assume that it does have such a subgroup H and show 
that a contradiction must occur. Since A, contains eight 3-cycles, we know 
that H must contain a 3-cycle. We will show that if H contains one 3-cycle, 
then it must contain more than 6 elements. 


Proposition 6.9 The group A, has no subgroup of order 6. 


PROOF. Since [A4 : H] = 2, there are only two cosets of H in Ay. Inasmuch 
as one of the cosets is H itself, right and left cosets must coincide; therefore, 
gH = Hg or gHg"! = H for every g € Ag. Since there are eight 3-cycles in 
A4, at least one 3-cycle must be in H. Without loss of generality, assume that 
(123) is in H. Then (123)~! = (132) must also be in H. Since ghg-! € H 
for all g € Ay and all h € A and 


(124) (123)(124)~! = (124)(123)(142) = (243) 
(243) (123)(243)~! = (243) (123)(234) = (142) 
we can conclude that H must have at least seven elements 


(1), (123), (132), (243), (243)~? = (234), (142), (142)~! = (124). 


Therefore, A, has no subgroup of order 6. 


In fact, we can say more about when two cycles have the same length. 


Theorem 6.10 Two cycles tT and p in Sp have the same length if and only 


if there exists ao € Sy such that p= oTo!. 


PROOF. Suppose that 
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Then p = o7To!. 


Conversely, suppose that T = (a1, da2,...,@,) is a k-cycle and o € S,. If 
o(a;) = 6 and o(4¢ moa k)+1) = 0, then (b) = b’. Hence, 


fe = (a(a1), 0(42),-+-,0(@x))- 


Since o is one-to-one and onto, p is a cycle of the same length as T. 


6.3. Fermat’s and Euler’s Theorems 


The Euler ¢-function is the map ¢: N > N defined by ¢(n) = 1 for n = 1, 
and, for n > 1, ¢(n) is the number of positive integers m with 1 <m<n 
and gcd(m,n) = 1. 

From Proposition 3.1, we know that the order of U(n), the group of units 
in Zp, is @(n). For example, |U(12)| = @(12) = 4 since the numbers that are 
relatively prime to 12 are 1, 5, 7, and 11. For any prime p, ¢(p) = p—1. We 
state these results in the following theorem. 


Theorem 6.11 Let U(n) be the group of units in Z,. Then |U(n)| = $(n). 


The following theorem is an important result in number theory, due to 
Leonhard Euler. 


Theorem 6.12 (Euler’s Theorem) Leta and n be integers such that n > 
0 and gced(a,n) =1. Then a?) = 1 (mod n). 


Proor. By Theorem 6.11 the order of U(n) is ¢(n). Consequently, a? = 1 
for all a € U(n); or a?) — 1 is divisible by n. Therefore, a? = 1 (mod n). 


If we consider the special case of Euler’s Theorem in which n = p is prime 
and recall that ¢(p) = p— 1, we obtain the following result, due to Pierre de 
Fermat. 


Theorem 6.13 (Fermat’s Little Theorem) Let p be any prime number 
and suppose that pja. Then 


a?-'=1 (mod p). 


Furthermore, for any integer b, b? = b (mod p). 
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Historical Note | 


Joseph-Louis Lagrange (1736-1813), born in Turin, Italy, was of French and Italian 
descent. His talent for mathematics became apparent at an early age. Leonhard Euler 
recognized Lagrange’s abilities when Lagrange, who was only 19, communicated to 
Euler some work that he had done in the calculus of variations. That year he was 
also named a professor at the Royal Artillery School in Turin. At the age of 23 he 
joined the Berlin Academy. Frederick the Great had written to Lagrange proclaiming 
that the “greatest king in Europe” should have the “greatest mathematician in 
Europe” at his court. For 20 years Lagrange held the position vacated by his mentor, 
Euler. His works include contributions to number theory, group theory, physics 
and mechanics, the calculus of variations, the theory of equations, and differential 
equations. Along with Laplace and Lavoisier, Lagrange was one of the people 
responsible for designing the metric system. During his life Lagrange profoundly 
influenced the development of mathematics, leaving much to the next generation of 


mathematicians in the form of examples and new problems to be solved. 


Exercises 


1. Suppose that G is a finite group with an element g of order 5 and an element 
h of order 7. Why must |G| > 35? 


2. Suppose that G is a finite group with 60 elements. What are the orders of 
possible subgroups of G? 


3. Prove or disprove: Every subgroup of the integers has finite index. 
4. Prove or disprove: Every subgroup of the integers has finite order. 


5. List the left and right cosets of the subgroups in each of the following. 


(a) (8) in Zo4 (e) Ap in Sp, 

(b) (3) in U(8) (f) D4 in S4 

(c) 3Z in Z (g) T in C* 

(d) Ag in Sy (h) H = {(1), (123), (132)} in S4 


6. Describe the left cosets of SL2(R) in GL2(R). What is the index of SL2(R) 
in GL2(R)? 


7. Verify Euler’s Theorem for n = 15 and a = 4. 


8. Use Fermat’s Little Theorem to show that if p = 4n + 3 is prime, there is no 
solution to the equation z? = —1 (mod p). 
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9. Show that the integers have infinite index in the additive group of rational 
numbers. 


10. Show that the additive group of real numbers has infinite index in the additive 
group of the complex numbers. 


11. Let H be a subgroup of a group G and suppose that g1,g2 € G. Prove that 
the following conditions are equivalent. 


12. If ghg"! € A for all g € Gand h € H, show that right cosets are identical to 
left cosets. 

13. What fails in the proof of Theorem 6.3 if @ : Ly — Ry is defined by 
d(gH) = Hg? 


14. Suppose that g” = e. Show that the order of g divides n. 


15. Modify the proof of Theorem 6.10 to show that any two permutations a, 8 € S, 
have the same cycle structure if and only if there exists a permutation y 
such that 8 = yay~!. If 6 = yay~! for some y € Sy, then a and # are 
conjugate. 

16. If |G| = 2n, prove that the number of elements of order 2 is odd. Use this 
result to show that G must contain a subgroup of order 2. 


17. Suppose that [G : H] = 2. If a and b are not in H, show that ab € H. 
18. If |G: H] = 2, prove that gH = Hg. 


19. Let H and K be subgroups of a group G. Prove that gH M gK is a coset of 
AK inG. 


20. Let H and K be subgroups of a group G. Define a relation ~ on G by a~ b 
if there exists anh € H andak € K such that hak = b. Show that this 
relation is an equivalence relation. The corresponding equivalence classes are 
called double cosets. Compute the double cosets of H = {(1), (123), (132)} 
in Ag. 


21. Let G be acyclic group of order n. Show that there are exactly ¢(n) generators 
for G. 


22. Let n = pi!p5?---p,* be the factorization of n into distinct primes. Prove 
1 P2 k 


that i i ; 
om =n (1-2) G-3) (0-3): 
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23. Show that 
n=)S_> (a) 
dln 


for all positive integers n. 


Sage Sage can create all the subgroups of a group, so long as the group is 
not too large. It can also create the cosets of a subgroup. 


id 


Introduction to 
Cryptography 


Cryptography is the study of sending and receiving secret messages. The aim 
of cryptography is to send messages across a channel so only the intended 
recipient of the message can read it. In addition, when a message is received, 
the recipient usually requires some assurance that the message is authentic; 
that is, that it has not been sent by someone who is trying to deceive the 
recipient. Modern cryptography is heavily dependent on abstract algebra 
and number theory. 

The message to be sent is called the plaintext message. The disguised 
message is called the ciphertext. The plaintext and the ciphertext are both 
written in an alphabet, consisting of letters or characters. Characters can 
include not only the familiar alphabetic characters A,..., Z and a, ..., z but 
also digits, punctuation marks, and blanks. A cryptosystem, or cipher, 
has two parts: encryption, the process of transforming a plaintext message 
to a ciphertext message, and decryption, the reverse transformation of 
changing a ciphertext message into a plaintext message. 

There are many different families of cryptosystems, each distinguished by 
a particular encryption algorithm. Cryptosystems in a specified cryptographic 
family are distinguished from one another by a parameter to the encryption 
function called a key. A classical cryptosystem has a single key, which must 
be kept secret, known only to the sender and the receiver of the message. If 
person A wishes to send secret messages to two different people B and C, 
and does not wish to have B understand C’s messages or vice versa, A must 
use two separate keys, so one cryptosystem is used for exchanging messages 
with B, and another is used for exchanging messages with C’. 

Systems that use two separate keys, one for encoding and another for 
decoding, are called public key cryptosystems. Since knowledge of the 
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encoding key does not allow anyone to guess at the decoding key, the encoding 
key can be made public. A public key cryptosystem allows A and B to send 
messages to C using the same encoding key. Anyone is capable of encoding 
a message to be sent to C’, but only C' knows how to decode such a message. 


7.1 Private Key Cryptography 


In single or private key cryptosystems the same key is used for both 
encrypting and decrypting messages. To encrypt a plaintext message, we 
apply to the message some function which is kept secret, say f. This function 
will yield an encrypted message. Given the encrypted form of the message, 
we can recover the original message by applying the inverse transformation 
f—'. The transformation f must be relatively easy to compute, as must f—!; 
however, f must be extremely difficult to guess at if only examples of coded 
messages are available. 


Example 1. One of the first and most famous private key cryptosystems 
was the shift code used by Julius Caesar. We first digitize the alphabet by 
letting A = 00,B = 01,...,Z = 25. The encoding function will be 


f(p) =p +3 mod 26; 
that is, AW D,BH E,...,Z+9C. The decoding function is then 
f-'(p) = p— 3 mod 26 = p+ 23 mod 26. 


Suppose we receive the encoded message DOJHEUD. To decode this message, 
we first digitize it: 
3, 14, 9, 7, 4, 20, 3. 


Next we apply the inverse transformation to get 
0,11,6,4,1,17,0, 


or ALGEBRA. Notice here that there is nothing special about either of the 
numbers 3 or 26. We could have used a larger alphabet or a different shift. 
| 


Cryptanalysis is concerned with deciphering a received or intercepted 
message. Methods from probability and statistics are great aids in deciphering 
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an intercepted message; for example, the frequency analysis of the characters 
appearing in the intercepted message often makes its decryption possible. 


Example 2. Suppose we receive a message that we know was encrypted by 
using a shift transformation on single letters of the 26-letter alphabet. To 
find out exactly what the shift transformation was, we must compute b in 
the equation f(p) = p+ 6 mod 26. We can do this using frequency analysis. 
The letter E = 04 is the most commonly occurring letter in the English 
language. Suppose that S = 18 is the most commonly occurring letter in the 
ciphertext. Then we have good reason to suspect that 18 = 4+ 6 mod 26, or 
b= 14. Therefore, the most likely encrypting function is 


f(p) =p +14 mod 26. 
The corresponding decrypting function is 
fl (p) = p+12 mod 26. 


It is now easy to determine whether or not our guess is correct. | 


Simple shift codes are examples of monoalphabetic cryptosystems. 
In these ciphers a character in the enciphered message represents exactly 
one character in the original message. Such cryptosystems are not very 
sophisticated and are quite easy to break. In fact, in a simple shift as 
described in Example 1, there are only 26 possible keys. It would be quite 
easy to try them all rather than to use frequency analysis. 

Let us investigate a slightly more sophisticated cryptosystem. Suppose 
that the encoding function is given by 


f(p) = ap + b mod 26. 


We first need to find out when a decoding function f~! exists. Such a 
decoding function exists when we can solve the equation 


c=ap+bmod 26 


for p. By Proposition 3.1, this is possible exactly when a has an inverse or, 
equivalently, when gcd(a, 26) = 1. In this case 


fl (p) = a 'p — ab mod 26. 
Such a cryptosystem is called an affine cryptosystem. 


Example 3. Let us consider the affine cryptosystem f(p) = ap + b mod 26. 
For this cryptosystem to work we must choose an a € Zog that is invertible. 
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This is only possible if gcd(a, 26) = 1. Recognizing this fact, we will let a = 5 
since gcd(5, 26) = 1. It is easy to see that a~! = 21. Therefore, we can take 
our encryption function to be f(p) = 5p + 3 mod 26. Thus, ALGEBRA is 
encoded as 3, 6, 7, 23,8, 10,3, or DGHXIKD. The decryption function will be 


f-1(p) = 21p — 21-3 mod 26 = 21p + 15 mod 26. 
| 


A cryptosystem would be more secure if a ciphertext letter could rep- 
resent more than one plaintext letter. To give an example of this type of 
cryptosystem, called a polyalphabetic cryptosystem, we will generalize 
affine codes by using matrices. The idea works roughly the same as before; 
however, instead of encrypting one letter at a time we will encrypt pairs of 
letters. We can store a pair of letters p; and p2 in a vector 


Let A be a 2 x 2 invertible matrix with entries in Zog. We can define an 
encoding function by 

f(p) = Ap +b, 
where b is a fixed column vector and matrix operations are performed in 
Zo. The decoding function must be 


f-\(p) =A *p- Ab. 


Example 4. Suppose that we wish to encode the word HELP. The corre- 
sponding digit string is 7,4,11,15. If 


a5 
4=(7 3) 
sie f 2 BL 
a ee ae 


If b = (2, 2)', then our message is encrypted as RRCR. The encrypted letter 
R represents more than one plaintext letter. | 


then 


Frequency analysis can still be performed on a polyalphabetic cryptosys- 
tem, because we have a good understanding of how pairs of letters appear 
in the English language. The pair th appears quite often; the pair qz never 
appears. To avoid decryption by a third party, we must use a larger matrix 
than the one we used in Example 4. 
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7.2 Public Key Cryptography 


If traditional cryptosystems are used, anyone who knows enough to encode a 
message will also know enough to decode an intercepted message. In 1976, 
W. Diffie and M. Hellman proposed public key cryptography, which is based 
on the observation that the encryption and decryption procedures need not 
have the same key. This removes the requirement that the encoding key be 
kept secret. The encoding function f must be relatively easy to compute, 
but f~! must be extremely difficult to compute without some additional 
information, so that someone who knows only the encrypting key cannot 
find the decrypting key without prohibitive computation. It is interesting 
to note that to date, no system has been proposed that has been proven to 
be “one-way;” that is, for any existing public key cryptosystem, it has never 
been shown to be computationally prohibitive to decode messages with only 
knowledge of the encoding key. 


The RSA Cryptosystem 


The RSA cryptosystem introduced by R. Rivest, A. Shamir, and L. Adleman 
in 1978, is based on the difficulty of factoring large numbers. Though it is not 
a difficult task to find two large random primes and multiply them together, 
factoring a 150-digit number that is the product of two large primes would 
take 100 million computers operating at 10 million instructions per second 
about 50 million years under the fastest algorithms currently known. 

The RSA cryptosystem works as follows. Suppose that we choose two 
random 150-digit prime numbers p and q. Next, we compute the product 
n = pq and also compute ¢(n) = m = (p—1)(q—1), where ¢ is the Euler 
o-function. Now we start choosing random integers E’ until we find one that 
is relatively prime to m; that is, we choose FE such that gcd(£,m) = 1. Using 
the Euclidean algorithm, we can find a number D such that DE = 1 (mod m). 
The numbers n and F are now made public. 

Suppose now that person B (Bob) wishes to send person A (Alice) a 
message over a public line. Since — and n are known to everyone, anyone can 
encode messages. Bob first digitizes the message according to some scheme, 
say A = 00,B = 02,...,Z = 25. If necessary, he will break the message into 
pieces such that each piece is a positive integer less than n. Suppose x is one 
of the pieces. Bob forms the number y = x” mod n and sends y to Alice. 
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For Alice to recover x, she need only compute « = y? mod n. Only Alice 
knows D. 


Example 5. Before exploring the theory behind the RSA cryptosystem 
or attempting to use large integers, we will use some small integers just to 
see that the system does indeed work. Suppose that we wish to send some 
message, which when digitized is 25. Let p = 23 and q = 29. Then 


n = pq = 667 


and 
b(n) = m = (p—1)(q- 1) = 616. 


We can let E = 487, since gcd(616,487) = 1. The encoded message is 
computed to be 
25487 mod 667 = 169. 


This computation can be reasonably done by using the method of repeated 
squares as described in Chapter 4. Using the Euclidean algorithm, we 
determine that 191F = 1+ 151m; therefore, the decrypting key is (n, D) = 
(667,191). We can recover the original message by calculating 


169!°! mod 667 = 25. 


Now let us examine why the RSA cryptosystem works. We know that 
DE =1 (mod m); hence, there exists a k such that 


DE=km+1=k¢(n) +1. 


There are two cases to consider. In the first case assume that gcd(x,n) = 1. 
Then by Theorem 6.12, 
= gPF = ghmtl — (29) Fy = (1)*'e = 2 mod n. 

So we see that Alice recovers the original message x when she computes 
y? mod n. 

For the other case, assume that gcd(a,n) 4 1. Since n = pq and x < n, 
we know z is a multiple of p or a multiple of g, but not both. We will describe 
the first possibility only, since the second is entirely similar. There is then 
an integer r, with r <q and x = rp. Note that we have gcd(x,q) = 1 and 
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that m = ¢(n) = (p— 1)(q- 1) = o(p)¢(q). Then, using Theorem 6.12, but 
now mod q, 


ohm — ghd) — (7,00) kop) — (14) = 1 mod gq. 


So there is an integer t such that 2*™ = 1+tq. Thus, Alice also recovers the 
message in this case, 


y? = ght] — gkmy — (14 tq)x =a +t¢q(rp) =x +trn =a modn. 


We can now ask how one would go about breaking the RSA cryptosystem. 
To find D given n and E, we simply need to factor n and solve for D by using 
the Euclidean algorithm. If we had known that 667 = 23-29 in Example 5, 
we could have recovered D. 


Message Verification 


There is a problem of message verification in public key cryptosystems. Since 
the encoding key is public knowledge, anyone has the ability to send an 
encoded message. If Alice receives a message from Bob, she would like to 
be able to verify that it was Bob who actually sent the message. Suppose 
that Bob’s encrypting key is (n’, E’) and his decrypting key is (n’, D’). Also, 
suppose that Alice’s encrypting key is (n,F) and her decrypting key is 
(n,D). Since encryption keys are public information, they can exchange 
coded messages at their convenience. Bob wishes to assure Alice that the 
message he is sending is authentic. Before Bob sends the message x to Alice, 
he decrypts x with his own key: 


a! =x” mod’. 
Anyone can change 2’ back to x just by encryption, but only Bob has the 
ability to form x’. Now Bob encrypts x’ with Alice’s encryption key to form 


y! =x" mod n, 
a message that only Alice can decode. Alice decodes the message and then 
encodes the result with Bob’s key to read the original message, a message 
that could have only been sent by Bob. 


Historical Note 


Encrypting secret messages goes as far back as ancient Greece and Rome. As we 
know, Julius Caesar used a simple shift code to send and receive messages. However, 
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the formal study of encoding and decoding messages probably began with the Arabs 
in the 1400s. In the fifteenth and sixteenth centuries mathematicians such as Alberti 
and Viete discovered that monoalphabetic cryptosystems offered no real security. 
In the 1800s, F. W. Kasiski established methods for breaking ciphers in which 
a ciphertext letter can represent more than one plaintext letter, if the same key 
was used several times. This discovery led to the use of cryptosystems with keys 
that were used only a single time. Cryptography was placed on firm mathematical 
foundations by such people as W. Friedman and L. Hill in the early part of the 
twentieth century. 

During World War IT mathematicians were very active in cryptography. Efforts 
to penetrate the cryptosystems of the Axis nations were organized in England and in 
the United States by such notable mathematicians as Alan Turing and A. A. Albert. 
The period after World War I saw the development of special-purpose machines for 
encrypting and decrypting messages. The Allies gained a tremendous advantage in 
World War II by breaking the ciphers produced by the German Enigma machine 
and the Japanese Purple ciphers. 

By the 1970s, interest in commercial cryptography had begun to take hold. 
There was a growing need to protect banking transactions, computer data, and 
electronic mail. In the early 1970s, IBM developed and implemented LUZIFER, the 
forerunner of the National Bureau of Standards’ Data Encryption Standard (DES). 

The concept of a public key cryptosystem, due to Diffie and Hellman, is very 
recent (1976). It was further developed by Rivest, Shamir, and Adleman with the 
RSA cryptosystem (1978). It is not known how secure any of these systems are. 
The trapdoor knapsack cryptosystem, developed by Merkle and Hellman, has been 
broken. It is still an open question whether or not the RSA system can be broken. 
At the time of the writing of this book, the largest number factored is 135 digits 
long, and at the present moment a code is considered secure if the key is about 
400 digits long and is the product of two 200-digit primes. There has been a great 
deal of controversy about research in cryptography in recent times: the National 
Security Agency would like to keep information about cryptography secret, whereas 
the academic community has fought for the right to publish basic research. 

Modern cryptography has come a long way since 1929, when Henry Stimson, 
Secretary of State under Herbert Hoover, dismissed the Black Chamber (the State 
Department’s cryptography division) in 1929 on the ethical grounds that “gentlemen 
do not read each other’s mail.” [- 1] 


Exercises 


1. Encode IXLOVEXMATH using the cryptosystem in Example 1. 


2. Decode ZLOOA WKLVA EHARQ WKHA ILQDO, which was encoded using 
the cryptosystem in Example 1. 


3. Assuming that monoalphabetic code was used to encode the following secret 
message, what was the original message? 
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10. 


11. 


12. 


NBQFRSMXZF YAWJUFHWFF ESKGQCFWDQ AFNBQFTILO FCWP 


. What is the total number of possible monoalphabetic cryptosystems? How 


secure are such cryptosystems? 


. Prove that a 2 x 2 matrix A with entries in Zg¢ is invertible if and only if 


gcd(det(A), 26) = 1 


. Given the matrix 


3 4 
4=( 9): 


use the encryption function f(p) = Ap + b to encode the message CRYP- 
TOLOGY, where b = (2,5)*. What is the decoding function? 


. Encrypt each of the following RSA messages x so that x is divided into blocks 


of integers of length 2; that is, if x = 142528, encode 14, 25, and 28 separately. 
(a) n = 3551, FE = 629, x = 31 
(b) n = 2257, E = 47,x = 23 
(c) n = 120979, F = 13251, « = 142371 
(d) n = 45629, E = 781, 2 = 231561 


. Compute the decoding key D for each of the encoding keys in Exercise 7. 
. Decrypt each of the following RSA messages y. 


(a) n = 3551, D = 1997, y = 2791 

(b) n =5893, D = 81,y = 34 

(c) n = 120979, D = 27331, y = 112135 
(a) n= 79403, D = 671, y = 129381 


For each of the following encryption keys (n, FE) in the RSA cryptosystem, 
compute D. 


(a) (n, E) = (451, 231) 

(b) (n, E) = (3053, 1921) 

(c) (n, E) = (37986733, 12371) 

(d) (n, EB) = (16394854313, 34578451) 


Encrypted messages are often divided into blocks of n letters. A message such 
as THE WORLD WONDERS WHY might be encrypted as JIW OCFRJ 
LPOEVYQ IOC but sent as JIW OCF RJL POE VYQ IOC. What are the 
advantages of using blocks of n letters? 


Find integers n, E, and X such that 
X==X (mod n). 


Is this a potential problem in the RSA cryptosystem? 
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13. Every person in the class should construct an RSA cryptosystem using primes 
that are 10 to 15 digits long. Hand in (n, £) and an encoded message. Keep 
D secret. See if you can break one another’s codes. 


Additional Exercises: Primality and Factoring 


In the RSA cryptosystem it is important to be able to find large prime numbers 
easily. Also, this cryptosystem is not secure if we can factor a composite number 
that is the product of two large primes. The solutions to both of these problems 
are quite easy. To find out if a number n is prime or to factor n, we can use trial 
division. We simply divide n by d = 2,3,...,./n. Either a factorization will be 
obtained, or n is prime if no d divides n. The problem is that such a computation 
is prohibitively time-consuming if n is very large. 


1. A better algorithm for factoring odd positive integers is Fermat’s factor- 
ization algorithm. 


(a) Let n = ab be an odd composite number. Prove that n can be written 
as the difference of two perfect squares: 


naa? —y=(x—y)(a+y). 
Consequently, a positive odd integer can be factored exactly when we 
can find integers x and y such that n = 2? — y?. 


(b) Write a program to implement the following factorization algorithm 
based on the observation in part (a). 


x [yn] 


yl 


1: while r?-—y?>n do 
yoytl 


if a?7—y? <n then 
reautl 
yl 
goto 1 

else if x*?—y?=0 then 
ats-x-y 
beauty 
write n=axb 


The expression |[,/n ] means the smallest integer greater than or equal 
to the square root of n. Write another program to do factorization 
using trial division and compare the speed of the two algorithms. Which 
algorithm is faster and why? 
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2. Primality Testing. Recall Fermat’s Little Theorem from Chapter 6. Let p 


be prime with gcd(a, p) = 1. Then a?~! = 1 (mod p). We can use Fermat’s 
Little Theorem as a screening test for primes. For example, 15 cannot be 
prime since 

gh = Gnd 15), 


However, 17 is a potential prime since 
geo at Gaod 17), 
We say that an odd composite number n is a pseudoprime if 
g7-l=1 (mod n). 
Which of the following numbers are primes and which are pseudoprimes? 


(a) 342 (c) 601 (e) 771 
(b) 811 (d) 561 (f) 631 


. Let n be an odd composite number and b be a positive integer such that 


gcd(b,n) = 1. If b°-! = 1 (mod n), then n is a pseudoprime base b. 
Show that 341 is a pseudoprime base 2 but not a pseudoprime base 3. 


. Write a program to determine all primes less than 2000 using trial division. 


Write a second program that will determine all numbers less than 2000 that 
are either primes or pseudoprimes. Compare the speed of the two programs. 
How many pseudoprimes are there below 2000? 


There exist composite numbers that are pseudoprimes for all bases to which 
they are relatively prime. These numbers are called Carmichael numbers. 
The first Carmichael number is 561 = 3-11-17. In 1992, Alford, Granville, and 
Pomerance proved that there are an infinite number of Carmichael numbers [4]. 
However, Carmichael numbers are very rare. There are only 2163 Carmichael 
numbers less than 25 x 10°. For more sophisticated primality tests, see [1], 
[6], or [7]. 
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Sage With Sage’s excellent implementations of basic number-theory com- 
putations, it is easy to work non-trivial examples of RSA and the exercises 
about primality and factoring. 
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Algebraic Coding Theory 


Coding theory is an application of algebra that has become increasingly 
important over the last several decades. When we transmit data, we are 
concerned about sending a message over a channel that could be affected 
by “noise.” We wish to be able to encode and decode the information in a 
manner that will allow the detection, and possibly the correction, of errors 
caused by noise. This situation arises in many areas of communications, 
including radio, telephone, television, computer communications, and even 
compact disc player technology. Probability, combinatorics, group theory, 
linear algebra, and polynomial rings over finite fields all play important roles 
in coding theory. 


8.1 Error-Detecting and Correcting Codes 


Let us examine a simple model of a communications system for transmitting 
and receiving coded messages (Figure 8.1). 

Uncoded messages may be composed of letters or characters, but typically 
they consist of binary m-tuples. These messages are encoded into codewords, 
consisting of binary n-tuples, by a device called an encoder. The message 
is transmitted and then decoded. We will consider the occurrence of errors 
during transmission. An error occurs if there is a change in one or more 
bits in the codeword. A decoding scheme is a method that either converts 
an arbitrarily received n-tuple into a meaningful decoded message or gives 
an error message for that n-tuple. If the received message is a codeword 
(one of the special n-tuples allowed to be transmitted), then the decoded 
message must be the unique message that was encoded into the codeword. 
For received non-codewords, the decoding scheme will give an error indication, 
or, if we are more clever, will actually try to correct the error and reconstruct 


115 


116 CHAPTER 8 ALGEBRAIC CODING THEORY 


m-digit message 


Encoder 


n-digit code word 


+ 


Transmitter 


Noise 


Receiver 


-digit received word 


3 


Decoder 


m-digit received message or error 


Figure 8.1. Encoding and decoding messages 


the original message. Our goal is to transmit error-free messages as cheaply 
and quickly as possible. 


Example 1. One possible coding scheme would be to send a message several 
times and to compare the received copies with one another. Suppose that the 
message to be encoded is a binary n-tuple (x1, 2%2,...,2%p). The message is 
encoded into a binary 3n-tuple by simply repeating the message three times: 


(i Boge vy ty) (iy yn 5 By pW Way pW Wy D9, 0x5) - 


To decode the message, we choose as the ith digit the one that appears in the 
ith place in at least two of the three transmissions. For example, if the original 
message is (0110), then the transmitted message will be (0110 0110 0110). 
If there is a transmission error in the fifth digit, then the received codeword 
will be (0110 1110 0110), which will be correctly decoded as (0110).! This 


‘We will adopt the convention that bits are numbered left to right in binary n-tuples. 
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triple-repetition method will automatically detect and correct all single errors, 
but it is slow and inefficient: to send a message consisting of n bits, 2n extra 
bits are required, and we can only detect and correct single errors. We will 
see that it is possible to find an encoding scheme that will encode a message 
of n bits into m bits with m much smaller than 3n. | 


Example 2. Even parity, a commonly used coding scheme, is much 
more efficient than the simple repetition scheme. The ASCII (American 
Standard Code for Information Interchange) coding system uses binary 8- 
tuples, yielding 2° = 256 possible 8-tuples. However, only seven bits are 
needed since there are only 2’ = 128 ASCII characters. What can or should 
be done with the extra bit? Using the full eight bits, we can detect single 
transmission errors. For example, the ASCII codes for A, B, and C are 


A = 6519 = 010000012, 
B = 6619 = 010000102, 
C = 6719 = 010000112. 


Notice that the leftmost bit is always set to 0; that is, the 128 ASCII 
characters have codes 


000000002 = 010, 


O11111112 = 12740. 


The bit can be used for error checking on the other seven bits. It is set to 
either 0 or 1 so that the total number of 1 bits in the representation of a 
character is even. Using even parity, the codes for A, B, and C now become 


A = 010000012, 
B = 010000102, 
C = 110000112. 


Suppose an A is sent and a transmission error in the sixth bit is caused by 
noise over the communication channel so that (0100 0101) is received. We 
know an error has occurred since the received word has an odd number of 
1’s, and we can now request that the codeword be transmitted again. When 
used for error checking, the leftmost bit is called a parity check bit. 

By far the most common error-detecting codes used in computers are 
based on the addition of a parity bit. Typically, a computer stores information 
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in m-tuples called words. Common word lengths are 8, 16, and 32 bits. One 
bit in the word is set aside as the parity check bit, and is not used to store 
information. This bit is set to either 0 or 1, depending on the number of 1’s 
in the word. 

Adding a parity check bit allows the detection of all single errors because 
changing a single bit either increases or decreases the number of 1’s by one, 
and in either case the parity has been changed from even to odd, so the new 
word is not a codeword. (We could also construct an error detection scheme 
based on odd parity; that is, we could set the parity check bit so that a 
codeword always has an odd number of 1’s.) a 


The even parity system is easy to implement, but has two drawbacks. 
First, multiple errors are not detectable. Suppose an A is sent and the first 
and seventh bits are changed from 0 to 1. The received word is a codeword, 
but will be decoded into a C instead of an A. Second, we do not have the 
ability to correct errors. If the 8-tuple (1001 1000) is received, we know that 
an error has occurred, but we have no idea which bit has been changed. We 
will now investigate a coding scheme that will not only allow us to detect 
transmission errors but will actually correct the errors. 


Received Word 
000 001 O10 O11 100 101 4110 111 
Transmitted 000 0 1 1 2 1 2 2 3 


Codeword 111 3 2 2 1 2 1 1 0 


Table 8.1. A repetition code 


Example 3. Suppose that our original message is either a 0 or a 1, and 
that 0 encodes to (000) and 1 encodes to (111). If only a single error occurs 
during transmission, we can detect and correct the error. For example, if a 
101 is received, then the second bit must have been changed from a 1 to a 0. 
The originally transmitted codeword must have been (111). This method 
will detect and correct all single errors. 

In Table 8.1, we present all possible words that might be received for the 
transmitted codewords (000) and (111). Table 8.1 also shows the number of 
bits by which each received 3-tuple differs from each original codeword. 
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Maximum-Likelihood Decoding 


The coding scheme presented in Example 3 is not a complete solution to the 
problem because it does not account for the possibility of multiple errors. 
For example, either a (000) or a (111) could be sent and a (001) received. 
We have no means of deciding from the received word whether there was a 
single error in the third bit or two errors, one in the first bit and one in the 
second. No matter what coding scheme is used, an incorrect message could 
be received: we could transmit a (000), have errors in all three bits, and 
receive the codeword (111). It is important to make explicit assumptions 
about the likelihood and distribution of transmission errors so that, in a 
particular application, it will be known whether a given error detection 
scheme is appropriate. We will assume that transmission errors are rare, and, 
that when they do occur, they occur independently in each bit; that is, if p 
is the probability of an error in one bit and q is the probability of an error 
in a different bit, then the probability of errors occurring in both of these 
bits at the same time is pg. We will also assume that a received n-tuple is 
decoded into a codeword that is closest to it; that is, we assume that the 
receiver uses maximum-likelihood decoding. 


P 
0 > 0 


Figure 8.2. Binary symmetric channel 


A binary symmetric channel is a model that consists of a transmitter 
capable of sending a binary signal, either a 0 or a 1, together with a receiver. 
Let p be the probability that the signal is correctly received. Then gq = 1—p 
is the probability of an incorrect reception. If a 1 is sent, then the probability 
that a 1 is received is p and the probability that a 0 is received is q (Figure 8.2). 
The probability that no errors occur during the transmission of a binary 
codeword of length n is p”. For example, if p = 0.999 and a message 
consisting of 10,000 bits is sent, then the probability of a perfect transmission 
is 

(0.999) 19,099 ~ 0.00005. 
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Theorem 8.1 /f a binary n-tuple (x1,...,%p) is transmitted across a bi- 
nary symmetric channel with probability p that no error will occur in each 
coordinate, then the probability that there are errors in exactly k coordinates is 


N\ ko n-k 


PROOF. Fix k different coordinates. We first compute the probability that 
an error has occurred in this fixed set of coordinates. The probability of an 
error occurring in a particular one of these k coordinates is qg; the probability 
that an error will not occur in any of the remaining n — k coordinates is 
p. The probability of each of these n independent events is q*p"—*. The 
number of possible error patterns with exactly k errors occurring is equal to 


() = mea 


the number of combinations of n things taken k at a time. Each of these 
error patterns has probability q*p"—* of occurring; hence, the probability of 
all of these error patterns is 


Example 4. Suppose that p = 0.995 and a 500-bit message is sent. The 
probability that the message was sent error-free is 


p” = (0.995)°° = 0.082. 


The probability of exactly one error occurring is 
& gp”! = 500(0.005)(0.995)499 ~ 0.204. 


The probability of exactly two errors is 


500 - 499 
(5) ep = — 5 — (0.005)°(0.995)"" 0.257. 


The probability of more than two errors is approximately 


1 — 0.082 — 0.204 — 0.257 = 0.457. 
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Block Codes 


If we are to develop efficient error-detecting and error-correcting codes, we 
will need more sophisticated mathematical tools. Group theory will allow 
faster methods of encoding and decoding messages. A code is an (n, m)-block 
code if the information that is to be coded can be divided into blocks of 
m binary digits, each of which can be encoded into n binary digits. More 
specifically, an (n,m)-block code consists of an encoding function 


BE: ZS > Zy 
and a decoding function 
D:Z3 > Zp. 


A codeword is any element in the image of F. We also require that FE be 
one-to-one so that two information blocks will not be encoded into the same 
codeword. If our code is to be error-correcting, then D must be onto. 


Example 5. The even-parity coding system developed to detect single errors 
in ASCII characters is an (8,7)-block code. The encoding function is 


Eley; esse 81) = We 2rin cr 01) 


where rg = 47 +246 +--- +21 with addition in Zo. | 


Let x = (%,...,%n) and y = (y1,..-,Yn) be binary n-tuples. The 
Hamming distance or distance, d(x, y), between x and y is the number 
of bits in which x and y differ. The distance between two codewords is the 
minimum number of transmission errors required to change one codeword into 
the other. The minimum distance for a code, dmin, is the minimum of all 
distances d(x, y), where x and y are distinct codewords. The weight, w(x), 
of a binary codeword x is the number of 1’s in x. Clearly, w(x) = d(x, 0), 
where O = (00---0). 


Example 6. Let x = (10101), y = (11010), and z = (00011) be all of the 
codewords in some code C’. Then we have the following Hamming distances: 


d(x,y) =4, d(x, z) = 3, d(y,z) = 3. 


The minimum distance for this code is 3. We also have the following weights: 
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The following proposition lists some basic properties about the weight of 
a codeword and the distance between two codewords. The proof is left as an 
exercise. 


Proposition 8.2 Let x, y, and z be binary n-tuples. Then 
1. w(x) = d(x, 0); 


2. d(x,y) = 0; 

3. d(x,y) = 0 exactly when x = y; 
4. d(x,y) = d(y,x); 

5. d(x,y) < d(x,z)+d(z,y). 


The weights in a particular code are usually much easier to compute than 
the Hamming distances between all codewords in the code. If a code is set 
up carefully, we can use this fact to our advantage. 

Suppose that x = (1101) and y = (1100) are codewords in some code. If 
we transmit (1101) and an error occurs in the rightmost bit, then (1100) will 
be received. Since (1100) is a codeword, the decoder will decode (1100) as 
the transmitted message. This code is clearly not very appropriate for error 
detection. The problem is that d(x,y) = 1. If x = (1100) and y = (1010) 
are codewords, then d(x, y) = 2. If x is transmitted and a single error occurs, 
then y can never be received. Table 8.2 gives the distances between all 4-bit 
codewords in which the first three bits carry information and the fourth is 
an even parity check bit. We can see that the minimum distance here is 2; 
hence, the code is suitable as a single error-correcting code. 


0000 O011 0101 0110 1001 1010 1100 1111 
0000 0 2 2 2 2 2 2 4 
0011 2 0 2 2 2 2 4 2 
0101 2 2 0 2 2 4 2 2 
0110 2 2 2 0 4 2 2 2 
1001 2 2 2 4 0 2 2 2 
1010 2 2 4 2 2 0 2 2 
1100 2 4 2 2 2 2 0 2 
1111 4 2 2 2 2 2 2 0 


Table 8.2. Distances between 4-bit codewords 
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To determine exactly what the error-detecting and error-correcting ca- 
pabilities for a code are, we need to analyze the minimum distance for the 
code. Let x and y be codewords. If d(x, y) = 1 and an error occurs where 
x and y differ, then x is changed to y. The received codeword is y and no 
error message is given. Now suppose d(x, y) = 2. Then a single error cannot 
change x to y. Therefore, if dmin = 2, we have the ability to detect single 
errors. However, suppose that d(x, y) = 2, y is sent, and a noncodeword z is 
received such that 

d(x,z) = d(y,z) =1. 


Then the decoder cannot decide between x and y. Even though we are aware 
that an error has occurred, we do not know what the error is. 

Suppose dmin > 3. Then the maximum-likelihood decoding scheme 
corrects all single errors. Starting with a codeword x, an error in the 
transmission of a single bit gives y with d(x, y) = 1, but d(z,y) > 2 for any 
other codeword z # x. If we do not require the correction of errors, then 
we can detect multiple errors when a code has a minimum distance that is 
greater than 3. 


Theorem 8.3 Let C be a code with dmin = 2n+1. Then C can correct any 
n or fewer errors. Furthermore, any 2n or fewer errors can be detected in C. 


PROOF. Suppose that a codeword x is sent and the word y is received with 
at most n errors. Then d(x, y) <n. If z is any codeword other than x, then 


2n+1< d(x,z) < d(x,y)+d(y,z) <n+d(y,z). 


Hence, d(y,z) >n+1 and y will be correctly decoded as x. Now suppose 
that x is transmitted and y is received and that at least one error has 
occurred, but not more than 2n errors. Then 1 < d(x,y) < 2n. Since the 
minimum distance between codewords is 2n + 1, y cannot be a codeword. 
Consequently, the code can detect between 1 and 2n errors. 


Example 7. In Table 8.3, the codewords c, = (00000), cz = (00111), 
c3 = (11100), and cy = (11011) determine a single error-correcting code. 


Historical Note 


Modern coding theory began in 1948 with C. Shannon’s paper, “A Mathematical 
Theory of Information” [7]. This paper offered an example of an algebraic code, and 
Shannon’s Theorem proclaimed exactly how good codes could be expected to be. 
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00000 00111 11100 11011 | 
00000 0 3 3 4 
00111 3 0 A 3 
11100 3 4 0 3 
11011 4 3 3 0 


Table 8.3. Hamming distances for an error-correcting code 


Richard Hamming began working with linear codes at Bell Labs in the late 1940s 
and early 1950s after becoming frustrated because the programs that he was running 
could not recover from simple errors generated by noise. Coding theory has grown 
tremendously in the past several years. The Theory of Error-Correcting Codes, 
by MacWilliams and Sloane [5], published in 1977, already contained over 1500 
references. Linear codes (Reed-Muller (32, 6)-block codes) were used on NASA’s 
Mariner space probes. More recent space probes such as Voyager have used what 
are called convolution codes. Currently, very active research is being done with 


Goppa codes, which are heavily dependent on algebraic geometry. 


8.2 Linear Codes 


To gain more knowledge of a particular code and develop more efficient 
techniques of encoding, decoding, and error detection, we need to add 
additional structure to our codes. One way to accomplish this is to require 
that the code also be a group. A group code is a code that is also a subgroup 
of Zz. 

To check that a code is a group code, we need only verify one thing. If 
we add any two elements in the code, the result must be an n-tuple that is 
again in the code. It is not necessary to check that the inverse of the n-tuple 
is in the code, since every codeword is its own inverse, nor is it necessary to 
check that 0 is a codeword. For instance, 


(11000101) + (11000101) = (00000000). 


Example 8. Suppose that we have a code that consists of the following 
7-tuples: 


(0000000) (0001111) (0010101) (0011010) 
(0100110) (0101001) (0110011) (0111100 
(1000011) (1001100) (1010110) (1011001) 
(1100101) (1101010) (1110000) (1111111). 
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It is a straightforward though tedious task to verify that this code is also 
a subgroup of Zs, and, therefore, a group code. This code is a single error- 
detecting and single error-correcting code, but it is a long and tedious process 
to compute all of the distances between pairs of codewords to determine 
that dmin = 3. It is much easier to see that the minimum weight of all the 
nonzero codewords is 3. As we will soon see, this is no coincidence. However, 
the relationship between weights and distances in a particular code is heavily 
dependent on the fact that the code is a group. | 


Lemma 8.4 Let x andy be binary n-tuples. Then w(x + y) = d(x, y). 


PROOF. Suppose that x and y are binary n-tuples. Then the distance 
between x and y is exactly the number of places in which x and y differ. 
But x and y differ in a particular coordinate exactly when the sum in the 
coordinate is 1, since 


1+1=0 
0+0=0 
1+0=1 
O+1=1. 


Consequently, the weight of the sum must be the distance between the two 
codewords. 


Theorem 8.5 Let din be the minimum distance for a group code C. Then 
dmin is the minimum of all the nonzero weights of the nonzero codewords in 
C. That is, 

Gia = Tn) we) x SEO}. 


PROOF. Observe that 


dmin = min{d(x,y):x#y} 
= min{d(x,y): x+y 40} 
=min{w(x+y):x+y 40} 
= min{w(z):z #0}. 
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Linear Codes 


From Example 8, it is now easy to check that the minimum nonzero weight 
is 3; hence, the code does indeed detect and correct all single errors. We 
have now reduced the problem of finding “good” codes to that of generating 
group codes. One easy way to generate group codes is to employ a bit of 
matrix theory. 

Define the inner product of two binary n-tuples to be 


XY HS MYi t+ Lnyn, 


where x = (21, 22,...,2n)' and y = (y1,y2,---,Yn)* are column vectors.” 


For example, if x = (011001) and y = (110101)', then x-y = 0. We can 
also look at an inner product as the product of a row matrix with a column 
matrix; that is, 


x-y=x'y 
Y1 
=(x1 «2 ig) . 
Yn 


= X1Y1 + Layo +-+- + LnYn- 


Example 9. Suppose that the words to be encoded consist of all binary 
3-tuples and that our encoding scheme is even-parity. To encode an arbitrary 
3-tuple, we add a fourth bit to obtain an even number of 1’s. Notice that 
an arbitrary n-tuple x = (21, 22,...,2n)* has an even number of 1’s exactly 
when 2; + 22 +++: +2n = 0; hence, a 4-tuple x = (21,22, 73,74)" has an 
even number of 1’s if 1] + 72 + 73 + 44 = 0, or 


Sal (ay TQ £3 x4) 


oo 
II 
j=) 


This example leads us to hope that there is a connection between matrices 
and coding theory. | 


?Since we will be working with matrices, we will write binary n-tuples as column vectors 
for the remainder of this chapter. 
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Let Mmxn(Zz) denote the set of all m x n matrices with entries in Zz. We 
do matrix operations as usual except that all our addition and multiplication 
operations occur in Zg. Define the null space of a matrix H € Mnxn(Z2) 
to be the set of all binary n-tuples x such that Hx = 0. We denote the null 
space of a matrix H by Null(#). 


Example 10. Suppose that 
0101 0 
H= i111 1 0 
00111 
For a 5-tuple x = (x1, %2,73,24,75)' to be in the null space of H, Hx = 0. 


Equivalently, the following system of equations must be satisfied: 


t2 +24 = 0 
tj+%2+%73+%4=0 
w+a4+25 = 0. 


The set of binary 5-tuples satisfying these equations is 
(00000) (11110) (10101) (01011). 


This code is easily determined to be a group code. a 


Theorem 8.6 Let H be in Mn xn(Z2). Then the null space of H is a 
group code. 


PROOF. Since each element of Z5 is its own inverse, the only thing that really 
needs to be checked here is closure. Let x, y € Null(H) for some matrix H 
in Mnxn(Z2). Then Hx = 0 and Hy = 0. So 


H(x+y)=Hx+ Hy =0+0=0. 


Hence, x + y is in the null space of H and therefore must be a codeword. 


A code is a linear code if it is determined by the null space of some 
matrix H € Mmxn(Zz2). 


Example 11. Let C be the code given by the matrix 


000111 
H=,;0 110411 
101001 
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Suppose that the 6-tuple x = (010011) is received. It is a simple matter of 
matrix multiplication to determine whether or not x is a codeword. Since 


Hx=|{1], 
1 


the received word is not a codeword. We must either attempt to correct the 
word or request that it be transmitted again. a 


8.3. Parity-Check and Generator Matrices 


We need to find a systematic way of generating linear codes as well as fast 
methods of decoding. By examining the properties of a matrix H and by 
carefully choosing H, it is possible to develop very efficient methods of 
encoding and decoding messages. To this end, we will introduce standard 
generator and canonical parity-check matrices. 

Suppose that H is an m X n matrix with entries in Z). and n > m. 
If the last m columns of the matrix form the m x m identity matrix, Im, 
then the matrix is a canonical parity-check matrix. More specifically, 
H =(A| Im), where A is the m x (n — m) matrix 


Q41 0 412" AL n—m 
Q21 422 ‘**  aA2n—m 
Qm1 Gm2 ‘°° aAmn—-m 


and Im is the m x m identity matrix 


1 0 0 
0 1 0 
02° -Q2 eee 1 


With each canonical parity-check matrix we can associate an n x (n — m) 
standard generator matriz 
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Our goal will be to show that Gx = y if and only if Hy = 0. Given a 
message block x to be encoded, G will allow us to quickly encode it into a 
linear codeword y. 


Example 12. Suppose that we have the following eight words to be encoded: 
(000), (001), (010),..., (111). 


For 
011 
A=|{1 1 O], 
1 01 


the associated standard generator and canonical parity-check matrices are 


1 0 0 
0 1 0 
001 
= 011 
1 1 0 
101 
and 
01110 0 
H=j{110 01 O], 
101001 
respectively. 


Observe that the rows in H represent the parity checks on certain bit 
positions in a 6-tuple. The 1’s in the identity matrix serve as parity checks 
for the 1’s in the same row. If x = (21, 12,23, 4,25, 26), then 


LQ 17 L317 4 
0= Ax= [274+2724+%5 


r1 + 23+ x6 


which yields a system of equations: 


x2 x3 w= 0 


LY v2 La 0 


4 oa x3 v= 0. 


Here x4 serves as a check bit for x2 and 73; 25 is a check bit for 7, and 2x2; 
and x¢ is a check bit for x; and x3. The identity matrix keeps x4, 75, and x6 
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from having to check on each other. Hence, 71, 72, and x3 can be arbitrary 
but x4, £5, and xg must be chosen to ensure parity. The null space of H is 
easily computed to be 


(000000) (001101) (010110) (011011) 
(100011) (101110) (110101) (111000). 


An even easier way to compute the null space is with the generator matrix 


G (Table 8.4). | 
Message Word | Codeword 

x Gx 

000 000000 
001 001101 
010 010110 
011 011011 
100 100011 
101 101110 
110 110101 
111 111000 


Table 8.4. A matrix-generated code 


Theorem 8.7 If H € Mm xn(Z2) is a canonical parity-check matrix, then 
Null(H) consists of allx € Z} whose first n—m bits are arbitrary but whose 
last m bits are determined by Hx =0. Each of the last m bits serves as an 
even parity check bit for some of the first n —m bits. Hence, H gives rise to 
an (n,n — m)-block code. 


We leave the proof of this theorem as an exercise. In light of the theorem, 
the first n — m bits in x are called information bits and the last m bits 
are called check bits. In Example 12, the first three bits are the information 
bits and the last three are the check bits. 


Theorem 8.8 Suppose that G is ann x k standard generator matriz. Then 
C= {y :Gx=y forxe Zk \ is an (n,k)-block code. More specifically, C 
is a group code. 


Proor. Let Gx, = y; and Gx2 = y2 be two codewords. Then yj + yo is in 
C since 
G(x, + x2) = Gx; + Gxo = yi + yo. 
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We must also show that two message blocks cannot be encoded into the same 
codeword. That is, we must show that if Gx = Gy, then x = y. Suppose 
that Gx = Gy. Then 


Gx — Gy = G(x-y) =0. 


However, the first k coordinates in G(x — y) are exactly x1 — y1,..-,@% — Ye; 
since they are determined by the identity matrix, J,, part of G. Hence, 
G(x — y) = 0 exactly when x = y. 


Before we can prove the relationship between canonical parity-check 
matrices and standard generating matrices, we need to prove a lemma. 


Lemma 8.9 Let H =(A| In) be anm x n canonical parity-check matrix 


and G = (22) be the corresponding n x (n—m) standard generator matriz. 
Then HG = 0. 


Proor. Let C = HG. The zjth entry in C is 


n 
Ci = y hikGkj 
fal 


n-m n 
= Ss" hikGej + Ss" hikGkj 


k=1 k=n—m+1 
n—m n 
= AiKOk; + S 0i—(m—n) ,kOkj 
k=1 k=n—m-+1 
Aig + aij 
= 0, 


where 


is the Kronecker delta. 


Theorem 8.10 Let H =(A| Im) be anmxn canonical parity-check matrix 


and letG = (42) be then x (n—m) standard generator matrix associated 


with H. Let C' be the code generated by G. Then y is in C if and only if 
Hy =0. In particular, C is a linear code with canonical parity-check matrix 
H. 
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PROOF. First suppose that y € C. Then Gx = y for some x € Z}’. By 
Lemma 8.9, Hy = HGx = 0. 

Conversely, suppose that y = (y1,---,Yn)* is in the null space of H. We 
need to find an x in Z}~™ such that Gx' = y. Since Hy = 0, the following 
set of equations must be satisfied: 


Q11Y1 + G12y2 +++ + G1 n—mYn—m + Yn—m41 = 


G21y1 + G22y2 + +++ + dan—mYn—m + Yn—m41 = 


Am1Y1 + Am2Yy2 +++ + Amn—mYn—m + Yn m+ = 0. 


Equivalently, yn—m+1,---;Yn are determined by y1,..-,Yn—m: 
Yn—m41 = 41191 + 41242 +++ + G1,n—mYn—m 
Yn—m+1 = G21Y1 + A22Y2 + +++ + G2n—mYn—m 


Yn—m41 = Ami Y1 + Gm2y2 +++ + Amn—mYn—m:- 


Consequently, we can let x; = y; fori=1,...,n—™m. 


It would be helpful if we could compute the minimum distance of a linear 
code directly from its matrix H in order to determine the error-detecting 
and error-correcting capabilities of the code. Suppose that 


e; = (100---00)' 
e2 = (010---00)' 


e,, = (000--- 01)" 


are the n-tuples in Z5 of weight 1. For an m x n binary matrix H, He; is 
exactly the 7th column of the matrix H. 


Example 13. Observe that 


ee 
Ee Or 
oO Fe 
oro 
> ee) 
ocoocr ao 
II 
FoF 
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We state this result in the following proposition and leave the proof as 
an exercise. 


Proposition 8.11 Let e; be the binary n-tuple with a1 in the ith coordinate 
and 0’s elsewhere and suppose that H € Mm xn(Z2). Then He; is the ith 
column of the matrix H. 


Theorem 8.12 Let H be anm x n binary matrix. Then the null space of 
HA is a single error-detecting code if and only if no column of H consists 
entirely of zeros. 


PROOF. Suppose that Null(H) is a single error-detecting code. Then the 
minimum distance of the code must be at least 2. Since the null space is a 
group code, it is sufficient to require that the code contain no codewords of 
less than weight 2 other than the zero codeword. That is, e; must not be a 
codeword for i=1,...,n. Since He; is the ith column of H, the only way 
in which e; could be in the null space of H would be if the ith column were 
all zeros, which is impossible; hence, the code must have the capability to 
detect at least single errors. 

Conversely, suppose that no column of H is the zero column. By Propo- 
sition 8.11, He; £ 0. 


Example 14. If we consider the matrices 


1 110 0 
H,j={1 001 0 
1 1001 
and 
1110 0 
Az2=11 0 0 0 O], 
1100441 


then the null space of Hy is a single error-detecting code and the null space 
of Hg is not. | 


We can even do better than Theorem 8.12. This theorem gives us 
conditions on a matrix H that tell us when the minimum weight of the code 
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formed by the null space of H is 2. We can also determine when the minimum 
distance of a linear code is 3 by examining the corresponding matrix. 


Example 15. If we let 
1 11 £0 
A= (ad 0 0) 1 
Td: “Qe 


and want to determine whether or not H is the canonical parity-check matrix 
for an error-correcting code, it is necessary to make certain that Null(H) does 
not contain any 4-tuples of weight 2. That is, (1100), (1010), (1001), (0110), 
(0101), and (0011) must not be in Null(H). The next theorem states that 
we can indeed determine that the code generated by H is error-correcting by 
examining the columns of H. Notice in this example that not only does H 
have no zero columns, but also that no two columns are the same. | 


Theorem 8.13 Let H be a binary matriz. The null space of H is a single 
error-correcting code if and only if H does not contain any zero columns and 
no two columns of H are identical. 


PROOF. The n-tuple e; + e; has 1’s in the 7th and jth entries and 0’s 
elsewhere, and w(e; + e;) = 2 for i 4 j. Since 


0= H(e,;+ e;) = He; + He; 


can only occur if the ith and jth columns are identical, the null space of H 
is a single error-correcting code. 


Suppose now that we have a canonical parity-check matrix H with three 
rows. Then we might ask how many more columns we can add to the 
matrix and still have a null space that is a single error-detecting and single 
error-correcting code. Since each column has three entries, there are 2? = 8 
possible distinct columns. We cannot add the columns 


0 1 0 0 
O],{O],1)1],]40 
0 0 0 1 


So we can add as many as four columns and still maintain a minimum 
distance of 3. 

In general, if H is an m x n canonical parity-check matrix, then there 
are n — m information positions in each codeword. Each column has m 
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bits, so there are 2’” possible distinct columns. It is necessary that the 
columns 0,€1,...,€, be excluded, leaving 2” — (1 + n) remaining columns 
for information if we are still to maintain the ability not only to detect but 
also to correct single errors. 


8.4 Efficient Decoding 


We are now at the stage where we are able to generate linear codes that 
detect and correct errors fairly easily, but it is still a time-consuming process 
to decode a received n-tuple and determine which is the closest codeword, 
because the received n-tuple must be compared to each possible codeword 
to determine the proper decoding. This can be a serious impediment if the 
code is very large. 


Example 16. Given the binary matrix 


1 110 0 
H={0 10 1 0 
1000 1 


and the 5-tuples x = (11011)' and y = (01011)*, we can compute 
0 1 
Ax= 10 and Hy =1|0 
0 1 


Hence, x is a codeword and y is not, since x is in the null space and y is not. 
Notice that Hx is identical to the first column of H. In fact, this is where 
the error occurred. If we flip the first bit in y from 0 to 1, then we obtain x. 
| 


If H is an m X n matrix and x € Z3, then we say that the syndrome of 
x is Hx. The following proposition allows the quick detection and correction 
of errors. 


Proposition 8.14 Let them x n binary matrix H determine a linear code 
and let x be the received n-tuple. Write x asx =c+e, where c is the 
transmitted codeword and e is the transmission error. Then the syndrome 
Hx of the received codeword x is also the syndrome of the error e. 


Proor. Hx = H(c+e) = Hc+ He=0+ He= He. 
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This proposition tells us that the syndrome of a received word depends 
solely on the error and not on the transmitted codeword. The proof of the 
following theorem follows immediately from Proposition 8.14 and from the 
fact that He is the ith column of the matrix H. 


Theorem 8.15 Let H € Myxn(Z2) and suppose that the linear code corre- 
sponding to H is single error-correcting. Let r be a received n-tuple that was 
transmitted with at most one error. If the syndrome of r is 0, then no error 
has occurred; otherwise, if the syndrome of r is equal to some column of H, 
say the ith column, then the error has occurred in the ith bit. 


Example 17. Consider the matrix 


1 0 
H= 1,0 1 
1 1 


oo Ff 
ore © 
> a) 


1 

1 

1 

and suppose that the 6-tuples x = (111110)*, y = (111111), and z = 
(010111)' have been received. Then 


1 1 1 
Ax={|1),Hy={1],H4z=10 
1 0 0 


Hence, x has an error in the third bit and z has an error in the fourth bit. The 
transmitted codewords for x and z must have been (110110) and (010011), 
respectively. The syndrome of y does not occur in any of the columns of the 
matrix H, so multiple errors must have occurred to produce y. a 


Coset Decoding 


We can use group theory to obtain another way of decoding messages. A 
linear code C' is a subgroup of Z}. Coset or standard decoding uses the 
cosets of C in Z5 to implement maximum-likelihood decoding. Suppose 
that C is an (n,m)-linear code. A coset of C in Z¥ is written in the form 
x +C, where x € Z}. By Lagrange’s Theorem (Theorem 6.5), there are 
2”-™ distinct cosets of Cin Z5. 


Example 18. Let C be the (5,3)-linear code given by the parity-check 
matrix 


0 110 0 
H=j{1 00 1 0 
1 10 0 1 
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Cosets 

C (00000) (01101) (10011) (11110) 
(10000) + C |} (10000) (11101) (00011) (01110) 
(01000) + C | (01000) (00101) (11011) (10110) 
(00100) + C | (00100) (01001) (10111) (11010) 
(00010) + C | (00010) (01111) (10001) (11100) 
(00001) + C | (00001) (01100) (10010) (11111) 
(10100) + C | (00111) (01010) (10100) (11001) 
(00110) + C | (00110) (01011) (10101) (11000) 


Table 8.5. Cosets of C 


The code consists of the codewords 
(00000) (01101) (10011) (11110). 


There are 2°-? = 23 cosets of C in Z3, each with order 2? = 4. These cosets 
are listed in Table 8.5. a 


Our task is to find out how knowing the cosets might help us to decode 
a message. Suppose that x was the original codeword sent and that r is the 
n-tuple received. If e is the transmission error, then r = e+x or, equivalently, 
x =e+r. However, this is exactly the statement that r is an element in the 
coset e+ C’. In maximum-likelihood decoding we expect the error e to be as 
small as possible; that is, e will have the least weight. An n-tuple of least 
weight in a coset is called a coset leader. Once we have determined a coset 
leader for each coset, the decoding process becomes a task of calculating 
r+e to obtain x. 


Example 19. In Table 8.5, notice that we have chosen a representative 
of the least possible weight for each coset. These representatives are coset 
leaders. Now suppose that r = (01111) is the received word. To decode r, 
we find that it is in the coset (00010) + C; hence, the originally transmitted 
codeword must have been (01101) = (01111) + (00010). a 


A potential problem with this method of decoding is that we might have 
to examine every coset for the received codeword. The following proposition 
gives a method of implementing coset decoding. It states that we can 
associate a syndrome with each coset; hence, we can make a table that 
designates a coset leader corresponding to each syndrome. Such a list is 
called a decoding table. 
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Syndrome | Coset Leader 
(000) 00000) 
(001) 00001) 
(010) 00010) 
(011) 10000) 
(100) 00100) 
(101) 01000) 
(110) 00110) 
(111) 10100) 


Table 8.6. Syndromes for each coset 


Proposition 8.16 Let C be an (n,k)-linear code given by the matrix H and 
suppose that x andy are in Z. Then x andy are in the same coset of C' if 
and only if Hx = Hy. That is, two n-tuples are in the same coset if and 
only if their syndromes are the same. 


PROOF. Two n-tuples x and y are in the same coset of C exactly when 
x — y € C; however, this is equivalent to H(x — y) = 0 or Hx = Hy. 


Example 20. Table 8.6 is a decoding table for the code C' given in Exam- 
ple 18. If x = (01111) is received, then its syndrome can be computed to 
be 


Ax={1 
1 


Examining the decoding table, we determine that the coset leader is (00010). 
It is now easy to decode the received codeword. | 


Given an (n, k)-block code, the question arises of whether or not coset 
decoding is a manageable scheme. A decoding table requires a list of cosets 
and syndromes, one for each of the 2”~* cosets of C. Suppose that we have 
a (32, 24)-block code. We have a huge number of codewords, 2”, yet. there 
are only 232-74 — 28 — 256 cosets. 


Exercises 


1. Why is the following encoding scheme not acceptable? 


Information: 0 1, 2 3 4 5 6 iC 8 
Codeword: 000 001 010 O11 101 110 111 #000 OO1 
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2. Without doing any addition, explain why the following set of 4-tuples in Z3 
cannot be a group code. 


(0110) (1001) (1010) (1100) 
3. Compute the Hamming distances between the following pairs of n-tuples. 


(a) (011010), (011100) (c) (00110), (01111) 
(b) (11110101), (01010100) (a) (1001), (0111) 


4. Compute the weights of the following n-tuples. 


(a) (011010) (c) (01111) 
(b) (11110101) (a) (1011) 


5. Suppose that a linear code C has a minimum weight of 7. What are the 
error-detection and error-correction capabilities of C? 


6. In each of the following codes, what is the minimum distance for the code? 
What is the best situation we might hope for in connection with error detection 
and error correction? 


(a) 


a) (011010) (011100 
(b) 


( 
(011100) (011011 
(000000) (010101 


(c) (000000) (011100 


( 
(a) (0110110) (011110 
(1001001) (1000011 


eS 


110111) (110000) 


( Re 

(111011) (100011) 
(110100) (110011) 
( 
0 


SES ma HY 


110101) (110001) 


(1110000) (1111111) 
(0001111) (0000000) 


SAS 


7. Compute the null space of each of the following matrices. What type of 
(n, k)-block codes are the null spaces? Can you find a matrix (not necessarily 
a standard generator matrix) that generates each code? Are your generator 
matrices unique? 


(a) (c) 
01000 LO), Ors 
10101 0 10141 
10 OY A 20 
(d) 
(b) 
101000 00011141 
01100121 
1 101 0 0 
101010 1 
ee 01100141 
ie. 0° Ge Os 
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10. 


11. 


12. 


13. 
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. Construct a (5,2)-block code. Discuss both the error-detection and error- 


correction capabilities of your code. 


. Let C be the code obtained from the null space of the matrix 


0 10 0 1 
H=j1 01041 
001141 
Decode the message 


01111 10101 01110 00011 


if possible. 


Suppose that a 1000-bit binary message is transmitted. Assume that the 
probability of a single error is p and that the errors occurring in different 
bits are independent of one another. If p = 0.01, what is the probability of 
more than one error occurring? What is the probability of exactly two errors 
occurring? Repeat this problem for p = 0.0001. 


Which matrices are canonical parity-check matrices? For those matrices 
that are canonical parity-check matrices, what are the corresponding stan- 
dard generator matrices? What are the error-detection and error-correction 
capabilities of the code generated by each of these matrices? 


(a) (c) 
1 10 0 0 1110 
0 01 0 0 1001 
0 0 0 1 +0 
100 0 1 
(a) 
(b) 
01100 0 000 1 0 0 0 
011010 0 
1 10 1 0 0 
101 0 0 1 0 
Oe eee 011000 1 
1 10001 


List all possible syndromes for the codes generated by each of the matrices in 
the previous exercise. 


Let 


| 

ES .So 
an > a 
OrRrH 
Ree 


Compute the syndrome caused by each of the following transmission errors. 


(a) An error in the first bit 
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14. 


15. 


16. 


17. 


18. 


19. 


(b) An error in the third bit 

(c) An error in the last bit 

(d) Errors in the third and fourth bits 
Let C be the group code in Z3 defined by the codewords (000) and (111). 
Compute the cosets of H in Z3. Why was there no need to specify right or 


left cosets? Give the single transmission error, if any, to which each coset 
corresponds. 


For each of the following matrices, find the cosets of the corresponding code 
C. Give a decoding table for each code if possible. 


(a) (c) 


0100 0 PSO. 0: a 
1 Mea Oh: A (2e08) 
10010 
(d) 
(b) 
0:02 00 1 ee ihe ae 
i: G40" 2B 30 1 2d OO B.A 
0 W.10' 20% he Hee Sey, 
t-'t) 0908-4 Yd. d 0. 1 0 


Let x, y, and z be binary n-tuples. Prove each of the following statements. 
(a) w(x) = d(x, 0) 

(b) d(x,y) =d(x+z,y +z) 

(c) d(x,y) = w(x—y) 


A metric on a set X isa map d: X x X > R satisfying the following 
conditions. 


(a) d(x,y) > 0 for allx,y € X; 


) 
(b) d(x, y) = 0 exactly when x = y; 
(c) d(x, y) = d(y,x); 
(4) dlx,y) < d(x, 2) +d(2,y). 


In other words, a metric is simply a generalization of the notion of distance. 
Prove that Hamming distance is a metric on Z}. Decoding a message actually 
reduces to deciding which is the closest codeword in terms of distance. 


Let C be a linear code. Show that either the ith coordinates in the codewords 
of C' are all zeros or exactly half of them are zeros. 


Let C' be a linear code. Show that either every codeword has even weight or 
exactly half of the codewords have even weight. 
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21. 


22. 


23. 


24. 


25. 


26 
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. Show that the codewords of even weight in a linear code Care also a linear 
code. 


If we are to use an error-correcting linear code to transmit the 128 ASCII 
characters, what size matrix must be used? What size matrix must be used 
to transmit the extended ASCII character set of 256 characters? What if we 
require only error detection in both cases? 


Find the canonical parity-check matrix that gives the even parity check bit code 
with three information positions. What is the matrix for seven information 
positions? What are the corresponding standard generator matrices? 


How many check positions are needed for a single error-correcting code with 
20 information positions? With 32 information positions? 


Let e; be the binary n-tuple with a 1 in the zth coordinate and 0’s elsewhere 
and suppose that H € Mmxn(Z2). Show that He; is the ith column of the 
matrix H. 


Let C be an (n,k)-linear code. Define the dual or orthogonal code of C 
to be 
Ct ={xeZ3:x-y =0 for all y € Ch. 
(a) Find the dual code of the linear code C where C is given by the matrix 


1 11 0 0 

001 0 1 

1 00 1 0 

(b) Show that C+ is an (n,n — k)-linear code. 

(c) Find the standard generator and parity-check matrices of C and C+. 
What happens in general? Prove your conjecture. 


. Let H be an m x n matrix over Zz, where the ith column is the number i 
written in binary with m bits. The null space of such a matrix is called a 
Hamming code. 


(a) Show that the matrix 


00011 1 
H={0 110041 
101 0 1 0 


generates a Hamming code. What are the error-correcting properties of 
a Hamming code? 


(b) The column corresponding to the syndrome also marks the bit that 
was in error; that is, the ith column of the matrix is i written as a 
binary number, and the syndrome immediately tells us which bit is in 
error. If the received word is (101011), compute the syndrome. In which 
bit did the error occur in this case, and what codeword was originally 
transmitted? 


EXERCISES 143 


(c) Give a binary matrix H for the Hamming code with six information 
positions and four check positions. What are the check positions and 
what are the information positions? Encode the messages (101101) and 
(001001). Decode the received words (0010000101) and (0000101100). 
What are the possible syndromes for this code? 

What is the number of check bits and the number of information bits 
in an (m,n)-block Hamming code? Give both an upper and a lower 
bound on the number of information bits in terms of the number of 
check bits. Hamming codes having the maximum possible number of 
information bits with k check bits are called perfect. Every possible 
syndrome except 0 occurs as a column. If the number of information 
bits is less than the maximum, then the code is called shortened. In 
this case, give an example showing that some syndromes can represent 
multiple errors. 


e 
~ 


Programming Exercises 


Write a program to implement a (16,12)-linear code. Your program should be 


able to encode and decode messages using coset decoding. Once your program is 


written, write a program to simulate a binary symmetric channel with transmission 


noise. Compare the results of your simulation with the theoretically predicted error 


probability. 
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9 


Isomorphisms 


Many groups may appear to be different at first glance, but can be shown to 
be the same by a simple renaming of the group elements. For example, Z4 
and the subgroup of the circle group T generated by 7 can be shown to be the 
same by demonstrating a one-to-one correspondence between the elements 
of the two groups and between the group operations. In such a case we say 
that the groups are isomorphic. 


9.1 Definition and Examples 


Two groups (G,-) and (H,0) are isomorphic if there exists a one-to-one 
and onto map ¢: G > H such that the group operation is preserved; that is, 


(a:b) = da) 0 (0) 


for all a and 6 in G. If G is isomorphic to H, we write G = H. The map @¢ 
is called an tsomorphism. 


Example 1. To show that Z, = (i), define a map ¢: Z4 — (i) by o(n) = 7”. 
We must show that ¢ is bijective and preserves the group operation. The 
map ¢ is one-to-one and onto because 


Since 
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the group operation is preserved. | 


Example 2. We can define an isomorphism ¢ from the additive group of 
real numbers (R,+) to the multiplicative group of positive real numbers 
(Rt,+) with the exponential map; that is, 


p(t ty) =e? = e%e¥ = o(2) G(y). 


Of course, we must still show that ¢ is one-to-one and onto, but this can be 
determined using calculus. | 


Example 3. The integers are isomorphic to the subgroup of Q* consisting 
of elements of the form 2". Define a map ¢: Z > Q* by ¢(n) = 2”. Then 


d(m+n) =2™*” — 29" — d(m)d(n). 


By definition the map ¢ is onto the subset {2” : n € Z} of Q*. To show that 
the map is injective, assume that m # n. If we can show that ¢(m) 4 ¢(n), 
then we are done. Suppose that m > n and assume that ¢(m) = ¢(n). Then 
2™ = 2” or 2" = 1, which is impossible since m — n > 0. | 


Example 4. The groups Zg and Z,2 cannot be isomorphic since they have 
different orders; however, it is true that U(8) = U(12). We know that 


U8) 4 1,3) 95 Ct 
U(12) = {1,5,7, 11}. 


An isomorphism ¢ : U(8) > U(12) is then given by 


LTrl 
3H 5 
5H 7 
Teh 11. 


The map ¢ is not the only possible isomorphism between these two groups. 
We could define another isomorphism w by (1) = 1, w(3) = 11, ¥(5) = 5, 
w(7) = 7. In fact, both of these groups are isomorphic to Zz x Zz (see 
Example 14 in Chapter 3). a 


Example 5. Even though $3 and Ze possess the same number of elements, 
we would suspect that they are not isomorphic, because Z¢ is abelian and 
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3 is nonabelian. To demonstrate that this is indeed the case, suppose that 
o: Ze — S3 is an isomorphism. Let a,b € S3 be two elements such that 
ab # ba. Since ¢ is an isomorphism, there exist elements m and n in Ze¢ 
such that 

o(m)=a and (n)=b. 


However, 
ab = $(m)(n) = o(m +n) = O(n +m) = o(n)o(m) = ba, 

which contradicts the fact that a and b do not commute. a 
Theorem 9.1 Let ¢: G— H be an isomorphism of two groups. Then the 
following statements are true. 

1. d- 1: H SG is an isomorphism. 

2. |G| = |Al. 

3. If G is abelian, then H is abelian. 

4. If G is cyclic, then H is cyclic. 

5. If G has a subgroup of order n, then H has a subgroup of order n. 


ProoF. Assertions (1) and (2) follow from the fact that @ is a bijection. We 
will prove (3) here and leave the remainder of the theorem to be proved in 
the exercises. 

(3) Suppose that h; and hz are elements of H. Since ¢ is onto, there 
exist elements gi, g2 € G such that $(g1) = hi and ¢(g2) = hg. Therefore, 


hihe = 6(91) (92) = o(gige) = (9291) = $(92)b(g1) = hah. 


We are now in a position to characterize all cyclic groups. 
Theorem 9.2 All cyclic groups of infinite order are isomorphic to Z. 


Proor. Let G be a cyclic group with infinite order and suppose that a is a 
generator of G. Define a map ¢:Z—> G by ¢: ns a”. Then 


d(m+n) =a” = a™a”" = o(m)d(n). 
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To show that ¢ is injective, suppose that m and n are two elements in Z, 
where m #n. We can assume that m > n. We must show that a” 4 a”. 
Let us suppose the contrary; that is, a” =a”. In this case a” = e, where 
m—n > 0, which contradicts the fact that a has infinite order. Our map 
is onto since any element in G can be written as a” for some integer n and 


an) =a". 
Theorem 9.3 If G is a cyclic group of order n, then G is isomorphic to Zy. 


PrRooF. Let G be a cyclic group of order n generated by a and define a 
map ¢: Zn, > G by ¢:k a*, where 0 < k <n. The proof that ¢ is an 
isomorphism is one of the end-of-chapter exercises. 


Corollary 9.4 If G is a group of order p, where p is a prime number, then 
G is isomorphic to Zp. 


PrRooF. The proof is a direct result of Corollary 6.7. 


The main goal in group theory is to classify all groups; however, it makes 
sense to consider two groups to be the same if they are isomorphic. We state 
this result in the following theorem, whose proof is left as an exercise. 


Theorem 9.5 The isomorphism of groups determines an equivalence rela- 
tion on the class of all groups. 


Hence, we can modify our goal of classifying all groups to classifying all 
groups up to isomorphism; that is, we will consider two groups to be the 
same if they are isomorphic. 


Cayley’s Theorem 


Cayley proved that if G is a group, it is isomorphic to a group of permutations 
on some set; hence, every group is a permutation group. Cayley’s Theorem 
is what we call a representation theorem. The aim of representation theory 
is to find an isomorphism of some group G that we wish to study into a 
group that we know a great deal about, such as a group of permutations or 
matrices. 


Example 6. Consider the group Z3. The Cayley table for Z3 is as follows. 


+|0 1 2 
0]0 1 2 
Mit ou 
2/2 0-2 
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The addition table of Z3 suggests that it is the same as the permutation 
group G = {(0), (012), (021)}. The isomorphism here is 


at : >) = (0) 
14 (7 : 5) = (012) 
2+ (5 ; 1) = (021) 


Theorem 9.6 (Cayley) Every group is isomorphic to a group of permuta- 
tions. 


Proor. Let G be a group. We must find a group of permutations G that is 
isomorphic to G. For any g € G, define a function Ay : G > G by A,(a) = ga. 
We claim that A, is a permutation of G. To show that A, is one-to-one, 
suppose that Ag(a) = A,(b). Then 


ga = g(a) = Ag(b) = gb. 
Hence, a = b. To show that Ag is onto, we must prove that for each a € G, 
there is a b such that \,(b) =a. Let b = g~ta. 
Now we are ready to define our group G. Let 
G={r,:9€ Gh. 


We must show that G is a group under composition of functions and find 
an isomorphism between G and G. We have closure under composition of 
functions since 


(Ag ° An) (a) = Ag(ha) = gha = Xgn(a). 
Also, 
Ae(a) =ea=a 


and 
(Ag-1 0 Ag)(@) = Ag-1(ga) = g \ga=a= Xe (a). 


We can define an isomorphism from G to G by ¢: g+3 Ag. The group 
operation is preserved since 


O(gh) = Agh = AgAn = O(9) G(A). 
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It is also one-to-one, because if 4(g)(a) = ¢(h)(a), then 
ga = r»ga = »;,a = ha. 


Hence, g = h. That ¢ is onto follows from the fact that ¢(g) = A, for any 
vg EG. 


The isomorphism g ++ A, is known as the left regular representation 
of G. 


Historical Note 


Arthur Cayley was born in England in 1821, though he spent much of the first 
part of his life in Russia, where his father was a merchant. Cayley was educated at 
Cambridge, where he took the first Smith’s Prize in mathematics. A lawyer for much 
of his adult life, he wrote several papers in his early twenties before entering the 
legal profession at the age of 25. While practicing law he continued his mathematical 
research, writing more than 300 papers during this period of his life. These included 
some of his best work. In 1863 he left law to become a professor at Cambridge. 
Cayley wrote more than 900 papers in fields such as group theory, geometry, and 
linear algebra. His legal knowledge was very valuable to Cambridge; he participated 
in the writing of many of the university’s statutes. Cayley was also one of the people 


responsible for the admission of women to Cambridge. 


9.2 Direct Products 


Given two groups G and H, it is possible to construct a new group from the 
Cartesian product of G and H, G x H. Conversely, given a large group, it is 
sometimes possible to decompose the group; that is, a group is sometimes 
isomorphic to the direct product of two smaller groups. Rather than studying 
a large group G, it is often easier to study the component groups of G. 


External Direct Products 


If (G,-) and (H,o) are groups, then we can make the Cartesian product of 
G and H into a new group. As a set, our group is just the ordered pairs 
(g,h) € Gx H where g € Gand h € H. We can define a binary operation 
on G x H by 


(91, h1)(g2, h2) = (91 - g2, hi o ha); 


that is, we just multiply elements in the first coordinate as we do in G and 
elements in the second coordinate as we do in H. We have specified the 
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particular operations - and o in each group here for the sake of clarity; we 
usually just write (g1,h1)(g2,h2) = (9192, hiha). 


Proposition 9.7 Let G and H be groups. The set G x H is a group under 
the operation (g1,h1)(g2,h2) = (gig2,hih2) where gi,g2 € G and hi, ho € H. 


PROOF. Clearly the binary operation defined above is closed. If eg and ey 
are the identities of the groups G and H respectively, then (eg, ez) is the 
identity of G x H. The inverse of (g,h) € Gx H is (g-!,h~'). The fact 
that the operation is associative follows directly from the associativity of G 
and H. 


Example 7. Let R be the group of real numbers under addition. The 
Cartesian product of R with itself, R x R = R?, is also a group, in which the 
group operation is just addition in each coordinate; that is, (a,b) + (c,d) = 
(a+c,b+d). The identity is (0,0) and the inverse of (a,b) is (—a,—b). I 


Example 8. Consider 
Zo x LZ = {(0, 0), (0, 1); (1.0), (1, 1)}. 


Although Zy x Zp and Z4 both contain four elements, it is easy to see 
that they are not isomorphic since for every element (a,b) in Zy x Za, 
(a,b) + (a,b) = (0,0), but Zz, is cyclic. a 


The group G x # is called the external direct product of G and H. 
Notice that there is nothing special about the fact that we have used only 
two groups to build a new group. The direct product 


[[ Gi = Gi x Go x +++ «x Gn 


i=1 


of the groups Gj,G2,...,Gp, is defined in exactly the same manner. If 
G=G, = G2 =--- = Grn, we often write G” instead of Gy x Gg x +--+ X Gp. 


Example 9. The group Z3, considered as a set, is just the set of all binary 
n-tuples. The group operation is the “exclusive or” of two binary n-tuples. 
For example, 

(01011101) + (01001011) = (00010110). 


This group is important in coding theory, in cryptography, and in many 
areas of computer science. | 
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Theorem 9.8 Let (g,h) € Gx H. Ifg andh have finite orders r and s 
respectively, then the order of (g,h) in G x H is the least common multiple 
ofr and s. 


PROOF. Suppose that m is the least common multiple of r and s and let 
n= |(g,h)|. Then 


(9, h)™ 7 (g™", h™) = (ec, eH) 
(g",h”) => (9, h)” = (eq, eH). 


Hence, n must divide m, and n < m. However, by the second equation, both 
r and s must divide n; therefore, n is a common multiple of r and s. Since 
m is the least common multiple of r and s, m <n. Consequently, m must 
be equal to n. 


Corollary 9.9 Let (g1,..-,9n) © [[ Gi. If 9; has finite order r; in Gi, then 
the order of (g1,---,9n) in |] G; is the least common multiple of r1,...,Tn- 


Example 10. Let (8,56) € Zi2 x Zeo. Since ged(8, 12) = 4, the order of 8 
is 12/4 = 3 in Zyo. Similarly, the order of 56 in Zgo is 15. The least common 
multiple of 3 and 15 is 15; hence, (8,56) has order 15 in Zj2 x Zeo. | 


Example 11. The group Ze x Z3 consists of the pairs 


(Os0)-- (OD)e 05235: (10), Ue TsO): 


In this case, unlike that of Z. x Zp and Zu, it is true that Zo x Z3 = Ze. 
We need only show that Zz x Z3 is cyclic. It is easy to see that (1,1) isa 
generator for Zo x Z3. ia 


The next theorem tells us exactly when the direct product of two cyclic 
groups is cyclic. 


Theorem 9.10 The group Zm xX Zn is isomorphic to Zmn if and only if 
gcd(m,n) = 1. 


Proor. Assume first that if Zm x Zn = Zmn, then gcd(m,n) = 1. To 
show this, we will prove the contrapositive; that is, we will show that if 
gcd(m,n) = d > 1, then Z,, x Z, cannot be cyclic. Notice that mn/d is 
divisible by both m and n; hence, for any element (a,b) € Zm X Zn, 


(a, b) + (a,b) +--+ + (a,b) = (0,0). 


mn/d times 
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Therefore, no (a,b) can generate all of ZX Zn. 
The converse follows directly from Theorem 9.8 since lem(m,n) = mn if 
and only if ged(m,n) = 1. 


Corollary 9.11 Let n1,...,nz be positive integers. Then 


k 
Ata, 
i=l 


if and only if gcd(nj,nj) = 1 fori Fj. 


Corollary 9.12 If 
— el €k 
where the p;s are distinct primes, then 


SS ae ; 
Lun, = Zi x x Lyk ‘ 


PROOF. Since the greatest common divisor of p;’ and PD; is 1 fori #7, the 
proof follows from Corollary 9.11. 


In Chapter 13, we will prove that all finite abelian groups are isomorphic 
to direct products of the form 


Ze X+++X Ze 
Py! Dye 


where pj,...,px are (not necessarily distinct) primes. 


Internal Direct Products 


The external direct product of two groups builds a large group out of 
two smaller groups. We would like to be able to reverse this process and 
conveniently break down a group into its direct product components; that 
is, we would like to be able to say when a group is isomorphic to the direct 
product of two of its subgroups. 

Let G be a group with subgroups H and K satisfying the following 
conditions. 


eG=HK={hk: he H,ke K}; 
e HONK = {e}; 
e hk=khforalke kK andhe H. 
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Then G is the internal direct product of H and K. 


Example 12. The group U(8) is the internal direct product of 
HM=f1.3) and JC=4 155). 
| 


Example 13. The dihedral group Dg is an internal direct product of its 
two subgroups 


H = {id,r?} and K = {id,r?,r*,s,r’s,r‘s}. 


It can easily be shown that K = S3; consequently, Dg = Ze x S3. | 


Example 14. Not every group can be written as the internal direct product 
of two of its proper subgroups. If the group $3 were an internal direct product 
of its proper subgroups H and K, then one of the subgroups, say H, would 
have to have order 3. In this case H is the subgroup {(1), (123), (132)}. The 
subgroup K must have order 2, but no matter which subgroup we choose for 
K, the condition that hk = kh will never be satisfied forh € H andke Kk. 

a 


Theorem 9.13 Let G be the internal direct product of subgroups H and K. 
Then G is isomorphic to H x K. 


PROOF. Since G is an internal direct product, we can write any element g € G 
as g = hk for some h € H and some k € K. Defineamap¢?:G-> Hx k 


by (9) = (hy). 

The first problem that we must face is to show that ¢ is a well-defined 
map; that is, we must show that h and k are uniquely determined by g. 
Suppose that g = hk =h’k’. Then h~'h’ = k(k’)~! is in both H and K, so 
it must be the identity. Therefore, h = h’ and k = k’, which proves that ¢ is, 
indeed, well-defined. 


To show that @ preserves the group operation, let gj = hik, and gz = hake 
and observe that 


0(9192) = o(hikyheke) 
= o(hihzkyk2) 
= (hha, kik2) 
= (hy, kt) (ha, ke) 
= $(91) (92). 
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We will leave the proof that ¢ is one-to-one and onto as an exercise. 


Example 15. The group Ze, is an internal direct product isomorphic to 
{0, 2,4} x {0, 3}. | 


We can extend the definition of an internal direct product of G toa 
collection of subgroups Hy, Ho,...,H, of G, by requiring that 


e G= AyA2--- Hy = {hyho-++ hyn: hy € Ai}; 
e A; a (Ups) = {e}; 
e hjh; = hjhy for all h; © H; and hj € H;. 
We will leave the proof of the following theorem as an exercise. 


Theorem 9.14 Let G be the internal direct product of subgroups H;, where 
4=1,2,...,n. Then G is isomorphic to ||, Hi. 


Exercises 


1. Prove that Z = nZ for n £0. 


2. Prove that C* is isomorphic to the subgroup of GL2(R) consisting of matrices 


of the form 
a b 
—b a 


4. Prove that U(8) is isomorphic to the group of matrices 


(0 (0 )\G a)-( 4): 


. Show that U(5) is isomorphic to U(10), but U(12) is not. 


3. Prove or disprove: U(8) © Zag. 


. Show that the nth roots of unity are isomorphic to Zp. 
. Show that any cyclic group of order n is isomorphic to Z,. 


. Prove that Q is not isomorphic to Z. 


oe Oa ND OH 


. Let G=R \ {—1} and define a binary operation on G by 
axb=a+b-+ab. 


Prove that G is a group under this operation. Show that (G,*) is isomorphic 
to the multiplicative group of nonzero real numbers. 
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10. 


11. 
12. 
13. 


14. 


15. 
16. 


17. 


18. 


19. 


20. 


Show that the matrices 


1 0 0 1 0 0 0 1 0 
0 1 0 0 0 1 1 0 O 
0 0 1 0 1 0 0 0 1 
0 0 1 0 0 1 0 1 0 
1 0 0 0 1 0 0 0 1 
0 1 0 1 0 0 1 0 O 


form a group. Find an isomorphism of G with a more familiar group of 
order 6. 


Find five non-isomorphic groups of order 8. 
Prove $4 is not isomorphic to Dj. 


Let w = cis(2a/n) be a primitive nth root of unity. Prove that the matrices 


Ww 0 01 
aa( %) am 3=(° 2) 


generate a multiplicative group isomorphic to D,. 


Show that the set of all matrices of the form 


+1 on 
p-(% 4): 


where n € Zy, is a group isomorphic to Dy. 


List all of the elements of Z4 x Zo. 


Find the order of each of the following elements. 


(a) (3,4) in Z4 x Ze 

(b) (6,15,4) in Z3q x Zas x Zoa 
(c) (5,10,15) in Zos x Zos x Zos 
(d) (8,8,8) in Zi9 X Zo xX Zgo 


Prove that D4 cannot be the internal direct product of two of its proper 
subgroups. 


Prove that the subgroup of Q* consisting of elements of the form 2”3” for 
m,n € Z@ is an internal direct product isomorphic to Z x Z. 


Prove that S3 x Zz is isomorphic to Dg. Can you make a conjecture about 
Do,,? Prove your conjecture. [Hint: Draw the picture.] 


Prove or disprove: Every abelian group of order divisible by 3 contains a 
subgroup of order 3. 
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22: 


23. 


24. 
25. 
26. 


27. 
28. 
29. 
30. 
31. 


32. 
33. 


34. 


35. 
36. 
37. 


38. 
39. 
AO. 
Al. 
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. Prove or disprove: Every nonabelian group of order divisible by 6 contains a 
subgroup of order 6. 


Let G be a group of order 20. If G has subgroups H and K of orders 4 and 5 
respectively such that hk = kh for all h € H and k € K, prove that G is the 
internal direct product of H and K. 


Prove or disprove the following assertion. Let G, H, and K be groups. If 
Gx k2?HxK,thnG= dH. 

Prove or disprove: There is a noncyclic abelian group of order 51. 

Prove or disprove: There is a noncyclic abelian group of order 52. 

Let ¢: G, > G2 be a group isomorphism. Show that ¢(«) = e if and only if 
u=e. 

Let G = H. Show that if G is cyclic, then so is H. 

Prove that any group G of order p, p prime, must be isomorphic to Zp. 
Show that S;, is isomorphic to a subgroup of An+o. 

Prove that D,, is isomorphic to a subgroup of Sy. 


Let ¢: Gy + Gz and w : Gz — G3 be isomorphisms. Show that ¢~! and 
wo @ are both isomorphisms. Using these results, show that the isomorphism 
of groups determines an equivalence relation on the class of all groups. 


Prove U(5) = Z4. Can you generalize this result to show that U(p) = Zp_1? 


Write out the permutations associated with each element of S3 in the proof 
of Cayley’s Theorem. 


An automorphism of a group G is an isomorphism with itself. Prove that 
complex conjugation is an automorphism of the additive group of complex 
numbers; that is, show that the map ¢(a + bi) = a — bi is an isomorphism 
from C to C. 


Prove that a+ib a— ib is an automorphism of C*. 
Prove that A++ B~1AB is an automorphism of SL2(R) for all B in GL2(R). 


We will denote the set of all automorphisms of G by Aut(G). Prove that 
Aut(G) is a subgroup of Sg, the group of permutations of G. 


Find Aut(Ze¢). 
Find Aut(Z). 


Find two nonisomorphic groups G and H such that Aut(G) = Aut(#H). 


Let G be a group and g € G. Define a map i, : G > G by i,(x) = garg". 


Prove that 7, defines an automorphism of G. Such an automorphism is called 
an inner automorphism. The set of all inner automorphisms is denoted 
by Inn(G). 
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42 


43. 


44. 


45. 


46. 


47. 
48. 
49. 


50. 
ol. 


52. 


53. 
54. 
55. 


. Prove that Inn(G) is a subgroup of Aut(G). 
What are the inner automorphisms of the quaternion group Qs? Is Inn(G) = 
Aut(G) in this case? 


Let G be a group and g € G. Define maps \, : G — G and p, : G > G by 
A,(x) = gz and p,(x) = xg~'. Show that i, = py 0 Aq is an automorphism of 
G. The isomorphism g ++ p, is called the right regular representation 
of G. 


Let G be the internal direct product of subgroups H and K. Show that the 
map ¢:G— H x K defined by ¢(g) = (h,k) for g = hk, where h € H and 
k € K, is one-to-one and onto. 


Let G and H be isomorphic groups. If G has a subgroup of order n, prove 
that H must also have a subgroup of order n. 


If G=G and H = H, show that Gx H=G~x H. 
Prove that G x H is isomorphic to H x G. 


Let n1,...,N~ be positive integers. Show that 


if and only if ged(n;,n;) =1 for i F 7. 
Prove that A x B is abelian if and only if A and B are abelian. 
If G is the internal direct product of H,, Ho,...,H,, prove that G is isomor- 
phic to [], Hi. 
Let H, and H2 be subgroups of G; and G2, respectively. Prove that H, x H2 
is a subgroup of G1 x Go. 
Let m,n € Z. Prove that (m,n) = (d) if and only if d = gcd(m, n). 
Let m,n € Z. Prove that (m)M (n) = (1) if and only if 1 = lem(m,n). 
Groups of order 2p. In this series of exercises we will classify all groups of 
order 2p, where p is an odd prime. 

(a) Assume G is a group of order 2p, where p is an odd prime. If a € G, 

show that A must have order 1, 2, p, or 2p. 


(b) Suppose that G an element of order 2p. Prove that G isomorphic to 
Zp. Hence, G is cyclic. 


(c) Suppose that G does not contain an element of order 2p. Show that 
G must contain an element of order p. Hint: Assume that G does not 
contain an element of order p. 
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(d) 
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Suppose that G does not contain an element of order 2p. Show that G 
must contain an element of order 2. 


Let P be a subgroup of G with order p and y € G have order 2. Show 
that yP = Py. 


Suppose that G does not contain an element of order 2p and P = (z) 
is a subgroup of order p generated by z. If y is an element of order 2, 
then yz = z*y for some 2 < k < p. 


Suppose that G does not contain an element of order 2p. Prove that G 
is not abelian. 


Suppose that G does not contain an element of order 2p and P = (z) 
is a subgroup of order p generated by z and y is an element of order 2. 
Show that we can list the elements of G as {z’y/ |0 <i<p,0<j <2}. 


Suppose that G does not contain an element of order 2p and P = (z) 
is a subgroup of order p generated by z and y is an element of order 2. 
Prove that the product (z’y/)(z"y*) can be expressed as a uniquely as 
z™y” for some non negative integers m,n. Thus, conclude that there is 
only one possibility for a non-abelian group of order 2p, it must therefore 
be the one we have seen already, the dihedral group. 


Sage Sage can quickly determine if two permutation groups are isomorphic, 
even though this should, in theory, be a very difficult computation. 


10 


Normal Subgroups and 
Factor Groups 


If H is a subgroup of a group G, then right cosets are not always the same 
as left cosets; that is, it is not always the case that gH = Hg for all g EG. 
The subgroups for which this property holds play a critical role in group 
theory: they allow for the construction of a new class of groups, called factor 
or quotient groups. Factor groups may be studied by using homomorphisms, 
a generalization of isomorphisms. 


10.1. Factor Groups and Normal Subgroups 


Normal Subgroups 


A subgroup H of a group G is normal in G if gH = Hg for all g € G. That 
is, a normal subgroup of a group G is one in which the right and left cosets 
are precisely the same. 


Example 1. Let G be an abelian group. Every subgroup H of G is a normal 
subgroup. Since gh = hg for all g € G and h € H, it will always be the case 
that gH = Hq. | 


Example 2. Let H be the subgroup of S3 consisting of elements (1) and 
(12). Since 
(123) —=4 (193).(13)t. amd. (123) =4(123),(93)% 


HT cannot be a normal subgroup of $3. However, the subgroup N, consisting 
of the permutations (1), (123), and (132), is normal since the cosets of N are 


N = {(1), (123), (132)} 
(12)N = N(12) = {(12), (13), (23)}. 
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The following theorem is fundamental to our understanding of normal 
subgroups. 


Theorem 10.1 Let G be a group and N be a subgroup of G. Then the 
following statements are equivalent. 


1. The subgroup N is normal in G. 
2. Forallgeé G,gNg! CN. 


3. For allgéG,gNg '=N. 


PROOF. (1) = (2). Since N is normal in G, gN = Ng for all g € G. Hence, 
for a given g € G and n € N, there exists an n’ in N such that gn = n'g. 
Therefore, gng-! =n’ € N or gNg"! CN. 

(2) > (3). Let g € G. Since gNg~! C N, we need only show N C gNg@t. 
For n € N, g-!ng = g7!n(g7!)-! EN. Hence, g~!ng =n’ for some n’ € N. 
Therefore, n = gn'g7 is in gNg™!. 

(3) + (1). Suppose that gNg~! = N for all g € G. Then for any n € N 
there exists an n’ € N such that gng~! = n’. Consequently, gn = n’g or 


gN C Ng. Similarly, Ng C gN. 


Factor Groups 


If N is a normal subgroup of a group G, then the cosets of N in G form 
a group G/N under the operation (aN)(bN) = abN. This group is called 
the factor or quotient group of G and N. Our first task is to prove that 
G/N is indeed a group. 


Theorem 10.2 Let N be a normal subgroup of a group G. The cosets of N 
in G form a group G/N of order |G: N]. 


PROOF. The group operation on G/N is (aN)(bN) = abN. This operation 
must be shown to be well-defined; that is, group multiplication must be 
independent of the choice of coset representative. Let aN = bN andcN = dN. 
We must show that 


(aN)(cN) = acN = bdN = (bN)(dN). 


10.1 FACTOR GROUPS AND NORMAL SUBGROUPS 161 


Then a = bn; and c = dng for some n, and ng in N. Hence, 


acN = bnidnoN 
= bnidN 
= bn, Nd 
= bNd 
= bdN. 


The remainder of the theorem is easy: eN = N is the identity and g~!N is 
the inverse of gN. The order of G/N is, of course, the number of cosets of 
N inG. 


It is very important to remember that the elements in a factor group are 
sets of elements in the original group. 


Example 3. Consider the normal subgroup of 53, N = {(1), (123), (132)}. 
The cosets of N in $3 are N and (12)N. The factor group $3/N has the 
following multiplication table. 


| N  (12)N 
N N 
(12)N | (12)N N 


This group is isomorphic to Za. At first, multiplying cosets seems both 
complicated and strange; however, notice that S3/N is a smaller group. The 
factor group displays a certain amount of information about 53. Actually, 
N = As, the group of even permutations, and (12)N = {(12), (13), (23)} is the 
set of odd permutations. The information captured in G/N is parity; that is, 
multiplying two even or two odd permutations results in an even permutation, 
whereas multiplying an odd permutation by an even permutation yields an 
odd permutation. | 


Example 4. Consider the normal subgroup 3Z of Z. The cosets of 3Z in Z 
are 


0+3Z ={...,—3,0,3,6,...} 
1432 Sh og —251)4, 7,4 
24+3Z ={...,—1,2,5,8,...}. 


The group Z/3Z is given by the multiplication table below. 
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+ |04+3Z 1432 2432 
0+3Z/0+3Z 14+3Z 2432 
14+3Z)1+3Z 24+3Z 0+32 
2+3Z/2+3Z 0+3Z 1432 


In general, the subgroup nZ of Z is normal. The cosets of Z/nZ are 


nZ 
1+nZ 
2+nZ 


(n—1)+nZ. 


The sum of the cosets k+ Zand!+Zisk+1+Z. Notice that we have 
written our cosets additively, because the group operation is integer addition. 
| 


Example 5. Consider the dihedral group D,,, generated by the two elements 
r and s, satisfying the relations 


r” = id 
s* = id 
sTs = rt, 


The element r actually generates the cyclic subgroup of rotations, Rp, of Dy. 
Since srs~! = srs = r—! € Ry, the group of rotations is a normal subgroup 
of Dn; therefore, D,/Rp is a group. Since there are exactly two elements in 
this group, it must be isomorphic to Za. | 


10.2 The Simplicity of the Alternating Group 


Of special interest are groups with no nontrivial normal subgroups. Such 
groups are called simple groups. Of course, we already have a whole 
class of examples of simple groups, Zp, where p is prime. These groups are 
trivially simple since they have no proper subgroups other than the subgroup 
consisting solely of the identity. Other examples of simple groups are not 
so easily found. We can, however, show that the alternating group, An, is 
simple for n > 5. The proof of this result requires several lemmas. 


Lemma 10.3 The alternating group An is generated by 3-cycles for n > 3. 


10.2. THE SIMPLICITY OF THE ALTERNATING GROUP 163 


PROOF. To show that the 3-cycles generate A,, we need only show that 
any pair of transpositions can be written as the product of 3-cycles. Since 
(ab) = (ba), every pair of transpositions must be one of the following: 


(ab) (ab) 


(ab) (cd) 
(ab) (ac) 


d 
acb) (acd) 
acb 


= 
= (ach). 


Lemma 10.4 Let N be a normal subgroup of Ay, wheren > 3. If N 
contains a 3-cycle, then N = Ay. 


PROOF. We will first show that A, is generated by 3-cycles of the specific 
form (ijk), where 7 and j are fixed in {1,2,...,n} and we let & vary. Every 
3-cycle is the product of 3-cycles of this form, since 


(iaj) = (ija)? 
(iab) = (ijb)(ija)? 
) = (i7b)°(i 

)=( 


Now suppose that N is a nontrivial normal subgroup of A, for n > 3 such 
that N contains a 3-cycle of the form (ija). Using the normality of N, we 
see that 

[(é5)(ak)|(Gja)"[(ij) (ak) = (igh) 
is in N. Hence, N must contain all of the 3-cycles (ijk) for 1 <k<n. By 
Lemma 10.3, these 3-cycles generate A,,; hence, N = An. 


Lemma 10.5 Forn > 5, every normal subgroup N of Ap contains a 3-cycle. 


ProoF. Let o be an arbitrary element in a normal subgroup N. There are 
several possible cycle structures for o. 


e og isa3-cycle. 
e co is the product of disjoint cycles, ¢ = T(a,a2---a;) € N, where r > 3. 
e co is the product of disjoint cycles, o = T(a1a2a3)(a4a5a¢6). 


e 0 =7(a1a2a3), where T is the product of disjoint 2-cycles. 
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e o =7(a1a2)(a3a4), where 7 is the product of an even number of disjoint 
2-cycles. 


If o is a 3-cycle, then we are done. If N contains a product of disjoint 
cycles, o, and at least one of these cycles has length greater than 3, say 
o = T(a1a2---a,), then 


(aya2a3)o(a,a2a3) + 
is in N since N is normal; hence, 
o'(ayaza3)o(a,aza3) 4 
is also in N. Since 


a a1a2a3)0(a,a2a3) + 


a! (a1 a2a3)0(a1a3a2) 


(aya2°-° ay) +77! (ayaza3)T(aya2 +++ dp)(a1a3a2) 
= (41 4yAy—1 + ++ A2)(41 4243) (a1 a2 ° + a,)(a1,a3a2) 

= (a1434,), 

N must contain a 3-cycle; hence, N = An. 


Now suppose that N contains a disjoint product of the form 


o = T(a1a203)(a4a54a6). 


Then 
o'(ayaga4)o(a,a2a4)' € N 
since 
(ayaza4)o(ayaga4) 1 EN. 
So 


o'(ayaza4)o(a,aza4) + 


[7 (aa2a3) (a4a5ag)|~*(aya2a4)T(a1a243) (a4a5ag)(aya2a4) + 
(a4aga5)(a,a3a2)T~ '(aya2a4)T (aya2a3)(a4a5a¢)(a,a4a2) 

(a4a645) (414342) (a14244) (a14243) (a4a54¢6)(a1a4a2) 
( 


4144020603) 7 


So N contains a disjoint cycle of length greater than 3, and we can apply 
the previous case. 
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Suppose NV contains a disjoint product of the form o = T(a,a2a3), where 
T is the product of disjoint 2-cycles. Since o € N, a? € N, and 


c= T(a1a2a3)T (a1 4243) 


= (a1a3a2). 


So N contains a 3-cycle. 
The only remaining possible case is a disjoint product of the form 


o = T(a1a2)(a3a4), 
where 7 is the product of an even number of disjoint 2-cycles. But 
o'(aya2a3)0(ayaga3) + 
is in N since (ayaza3)o(a,a2a3) + is in N; and so 


o'(aya2a3)0(a1a2a3) | 

= 7 (a,a2)(a3a4) (a1a2a3)T(a1a2)(a3a4)(aya2a3) + 

= (a1a3)(a2a4). 
Since n > 5, we can find b € {1,2,...,n} such that b 4 a1, a2,a3,a4. Let 
tt = (a1a3b). Then 

p*(a1a3)(a2a4)4(a1a3)(a2a4) € N 
and 
t*(aya3)(a2a4) 14(a1.43) (a2a4) 


= (a, ba3)(a,a3) (aza4) (a,a3b)(a,a3) (a2a4) 
= (a,a3b). 


Therefore, N contains a 3-cycle. This completes the proof of the lemma. 


Theorem 10.6 The alternating group, An, is simple for n> 5. 


ProoF. Let N be a normal subgroup of A,. By Lemma 10.5, N contains 
a 3-cycle. By Lemma 10.4, N = Ay; therefore, A, contains no proper 
nontrivial normal subgroups for n > 5. 


Ss Hstorical Note 
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One of the foremost problems of group theory has been to classify all simple finite 
groups. This problem is over a century old and has been solved only in the last few 
years. In a sense, finite simple groups are the building blocks of all finite groups. The 
first nonabelian simple groups to be discovered were the alternating groups. Galois 
was the first to prove that As was simple. Later mathematicians, such as C. Jordan 
and L. E. Dickson, found several infinite families of matrix groups that were simple. 
Other families of simple groups were discovered in the 1950s. At the turn of the 
century, William Burnside conjectured that all nonabelian simple groups must have 
even order. In 1963, W. Feit and J. Thompson proved Burnside’s conjecture and 
published their results in the paper “Solvability of Groups of Odd Order,” which 
appeared in the Pacific Journal of Mathematics. Their proof, running over 250 
pages, gave impetus to a program in the 1960s and 1970s to classify all finite simple 
groups. Daniel Gorenstein was the organizer of this remarkable effort. One of the 
last simple groups was the “Monster,” discovered by R. Greiss. The Monster, a 
196,833 x 196,833 matrix group, is one of the 26 sporadic, or special, simple groups. 
These sporadic simple groups are groups that fit into no infinite family of simple 


groups. 


Exercises 


1. For each of the following groups G, determine whether H is a normal subgroup 
of G. If H is a normal subgroup, write out a Cayley table for the factor group 
G/H. 

(a) G=S4 and H = Ay 

(b) G=As and H = {(1), (123), (132)} 
(c) G= S84 and H = D4, 

(d) G= Qs and H = {1,-1,/,-I} 

(e) G=Zand H =52Z 


2. Find all the subgroups of D4. Which subgroups are normal? What are all 
the factor groups of D4 up to isomorphism? 


3. Find all the subgroups of the quaternion group, Qg. Which subgroups are 
normal? What are all the factor groups of Qg up to isomorphism? 


4. Let T be the group of nonsingular upper triangular 2 x 2 matrices with entries 
in R; that is, matrices of the form 


(0): 
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where a, b, c€ R and ac 4 0. Let U consist of matrices of the form 
1 ¢z 
0 1)’ 


(a) Show that U is a subgroup of T. 
(b) Prove that U is abelian. 

(c) Prove that U is normal in T. 
(d) Show that T/U is abelian. 

(e) Is T normal in GL2(R)? 


where x ER. 


. Show that the intersection of two normal subgroups is a normal subgroup. 


6. If G is abelian, prove that G/H must also be abelian. 


7. Prove or disprove: If H is a normal subgroup of G such that H and G/H are 


12. 


13. 


14. 


abelian, then G is abelian. 


. If G is cyclic, prove that G/H must also be cyclic. 
. Prove or disprove: If H and G/H are cyclic, then G is cyclic. 


. Let H be a subgroup of index 2 of a group G. Prove that H must be a normal 


subgroup of G. Conclude that S,, is not simple. 


. Let G be a group of order p*, where p is a prime number. If H is a subgroup 


of G of order p, show that H is normal in G. Prove that G must be abelian. 


If a group G has exactly one subgroup H of order k, prove that H is normal 
in G. 


Define the centralizer of an element g in a group G to be the set 
C(g) = {x# €G: 2g = gz}. 


Show that C(g) is a subgroup of G. If g generates a normal subgroup of G, 
prove that C'(g) is normal in G. 


Recall that the center of a group G is the set 
Z(G) ={x €G: xg = gz for allg €G }. 


(a) Calculate the center of S3. 

(b) Calculate the center of GL2(R). 

(c) Show that the center of any group G is a normal subgroup of G. 
(d) If G/Z(G) is cyclic, show that G is abelian. 
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15. Let G be a group and let G’ = (aba~‘b~!); that is, G’ is the subgroup of all 
finite products of elements in G of the form aba~'b~!. The subgroup G’ is 
called the commutator subgroup of G. 


(a) Show that G’ is a normal subgroup of G. 


(b) Let N be a normal subgroup of G. Prove that G/N is abelian if and 
only if N contains the commutator subgroup of G. 


Sage Sage can esily determine if a subgroup is normal or not. If so, it 
can create the quotient group. However, the construction creates a new 
permuation group, isomorphic to the quotient group, so its utility is limited. 


11 


Homomorphisms 


11.1 Group Homomorphisms 


One of the basic ideas of algebra is the concept of a homomorphism, a 
natural generalization of an isomorphism. If we relax the requirement 
that an isomorphism of groups be bijective, we have a homomorphism. A 
homomorphism between groups (G,:) and (H,o) isa map ¢: G > H 
such that 

O(91 - 92) = $(91) © (92) 


for g1,g2 € G. The range of ¢ in H is called the homomorphic image of ¢. 

Two groups are related in the strongest possible way if they are isomorphic; 
however, a weaker relationship may exist between two groups. For example, 
the symmetric group Sy, and the group Zz are related by the fact that S$, can 
be divided into even and odd permutations that exhibit a group structure 
like that Zz, as shown in the following multiplication table. 


| even odd 


even | even odd 


odd | odd even 


We use homomorphisms to study relationships such as the one we have just 
described. 


Example 1. Let G be a group and g € G. Define a map ¢: Z > G by 
go(n) = g”. Then ¢ is a group homomorphism, since 


d(m+n) = 9" = gg" = b(m)d(n). 


This homomorphism maps Z onto the cyclic subgroup of G generated by g. 
id) 
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Example 2. Let G = GL2(R). If 


a b 
a= (a 
is in G, then the determinant is nonzero; that is, det(A) = ad — bc # 0. 
Also, for any two elements A and B in G, det(AB) = det(A) det(B). Using 


the determinant, we can define a homomorphism ¢ : GL2(R) > R* by 
A +> det(A). a 


Example 3. Recall that the circle group T consists of all complex numbers 
z such that |z| = 1. We can define a homomorphism ¢ from the additive 
group of real numbers R to T by ¢:40++ cos@+isin@. Indeed, 


o(a + B) = cos(a + 8) + isin(a + ) 
= (cosacos § — sinasin 3) + i(sin a cos 8 + cos asin 3) 
= (cosa + isina) + (cos 8 + isin 2) 


= $(a)9(8). 


Geometrically, we are simply wrapping the real line around the circle in a 
group-theoretic fashion. | 


The following proposition lists some basic properties of group homomor- 
phisms. 


Proposition 11.1 Let 6: Gj ~ Go be a homomorphism of groups. Then 
1. Ife is the identity of G,, then ¢(e) is the identity of Go; 
2. For any element g € G1, o(g—') = [¢(g)]7}; 
3. If H, is a subgroup of Gi, then (M1) is a subgroup of Go; 


4. If Hy is a subgroup of Gz, then ¢~!(H2) = {g € Gi: o(g) € Ho} is a 
subgroup of Gy. Furthermore, if Hz is normal in Gz, then d~'(H2) is 
normal in G. 


PROOF. (1) Suppose that e and e’ are the identities of G; and Go, respectively; 
then 


e'o(e) = 9(e) = G(ee) = o(e) de). 
By cancellation, (e) = e’. 


11.1 GROUP HOMOMORPHISMS 171 


(2) This statement follows from the fact that 


o(97')o(9) = o(g7'g) = o(e) =e. 


(3) The set ¢(H;) is nonempty since the identity of G2 is in ¢(H;). 
Suppose that Hj is a subgroup of G, and let x and y be in ¢(H1). There 
exist elements a,b € H, such that ¢(a) = x and ¢(b) = y. Since 


xy = $(a)[$(b)|-* = d(ab-") € o(A), 


$(H;,) is a subgroup of G2 by Proposition 3.10. 

(4) Let Hz be a subgroup of G2 and define H, to be ¢~!(H2); that is, 
H, is the set of all g € Gy such that ¢(g) € Hj. The identity is in Hy since 
o(e) =e. If a and bare in Hy, then ¢(ab~!) = ¢(a)[o(b)] “+ is in Hz since Hy 
is a subgroup of Gy. Therefore, ab~! € H, and Hy is a subgroup of G). If 
Hy is normal in Gz, we must show that g~'hg € Hj, for h € Hy and g € G4. 
But 

o(g *hg) = [d(9)} *o(h) dg) € Ae, 


since Hy» is a normal subgroup of Gy. Therefore, g~thg € Hy. 


Let ¢: G > H be a group homomorphism and suppose that e is the 
identity of H. By Proposition 11.1, ¢~!({e}) is a subgroup of G. This 
subgroup is called the kernel of ¢ and will be denoted by ker ¢. In fact, this 
subgroup is a normal subgroup of G since the trivial subgroup is normal in 
HT. We state this result in the following theorem, which says that with every 
homomorphism of groups we can naturally associate a normal subgroup. 


Theorem 11.2 Let 6: G— H be a group homomorphism. Then the kernel 
of @ is a normal subgroup of G. 


Example 4. Let us examine the homomorphism ¢ : GL2(IR) — R* defined by 
At+ det(A). Since 1 is the identity of R*, the kernel of this homomorphism 
is all 2 x 2 matrices having determinant one. That is, ker? = SLo(R). 

| 


Example 5. The kernel of the group homomorphism @¢ : R > C* defined 
by $(0) = cos@+isin@ is {2mn: n € Z}. Notice that ker ¢ = Z. a 


Example 6. Suppose that we wish to determine all possible homomorphisms 
o from Z7 to Zi. Since the kernel of @ must be a subgroup of Z7, there are 
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only two possible kernels, {0} and all of Z7. The image of a subgroup of 
Zz must be a subgroup of Z 2. Hence, there is no injective homomorphism; 
otherwise, Zj2 would have a subgroup of order 7, which is impossible. Conse- 
quently, the only possible homomorphism from Z7 to Zj2 is the one mapping 
all elements to zero. a 


Example 7. Let G be a group. Suppose that g € G and ¢ is the homomor- 
phism from Z to G given by $(n) = g”. If the order of g is infinite, then the 
kernel of this homomorphism is {0} since ¢ maps Z onto the cyclic subgroup 
of G generated by g. However, if the order of g is finite, say n, then the 
kernel of @ is nZ. | 


11.2 The Isomorphism Theorems 


Though at first it is not evident that factor groups correspond exactly to 
homomorphic images, we can use factor groups to study homomorphisms. 
We already know that with every group homomorphism ¢: G— H we can 
associate a normal subgroup of G, ker ¢; the converse is also true. Every 
normal subgroup of a group G gives rise to homomorphism of groups. 

Let H be a normal subgroup of G. Define the natural or canonical 
homomorphism 

¢:G>G/H 


by 
o(g) = gH. 


This is indeed a homomorphism, since 


b(9192) = ng2H = gn. Hg2H = $(91)0(92). 


The kernel of this homomorphism is H. The following theorems describe the 
relationships among group homomorphisms, normal subgroups, and factor 
groups. 


Theorem 11.3 (First Isomorphism Theorem) /fw :G — H is a group 
homomorphism with K = ker w, then K is normal in G. Let 6:G—>G/K 
be the canonical homomorphism. Then there exists a unique isomorphism 
n:G/K > W(G) such that w = n¢. 
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Proor. We already know that K is normal in G. Define 7 : G/K — W(G) by 
n(gk) = v(g). We must first show that this is a well-defined map. Suppose 
that g,K = g2K. For some k € K, gik = go; consequently, 


nnkK) = V(g1) = Vo) vk) = Y(mk) = Y(92) = 192K). 


Since n(gi1 kK) = n(g2K), 7 does not depend on the choice of coset represen- 
tative. Clearly 7 is onto w(G). To show that 7 is one-to-one, suppose that 


n(giK) = n(g2K). Then (91) = (gz). This implies that (gy 'g2) = e, or 
9,92 is in the kernel of 7; hence, I, 92K = K; that is, g. kK = goK. Finally, 
we must show that 7 is a homomorphism, but 


(gi Kgok) = n(gig2k) 
(9192) 
(91) (92) 


(mK )n(gok). 


lll 
€€es 


I 
3 


Mathematicians often use diagrams called commutative diagrams to 
describe such theorems. The following diagram “commutes” since w = n¢@. 


G/K 


Example 8. Let G be a cyclic group with generator g. Define a map 
¢:Z—4G by nw g”. This map is a surjective homomorphism since 


(m+n) = 9" = gg" = o(m)d(n). 


Clearly ¢ is onto. If |g| = m, then g™ = e. Hence, kerd = mZ and 
Z/ker @ =Z/mZ=G. On the other hand, if the order of g is infinite, then 
ker 6 = 0 and @ is an isomorphism of G and Z. Hence, two cyclic groups are 
isomorphic exactly when they have the same order. Up to isomorphism, the 
only cyclic groups are Z and Z,,. a 
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Theorem 11.4 (Second Isomorphism Theorem) Let H be a subgroup 
of a group G (not necessarily normal in G) and N a normal subgroup of G. 
Then HN is a subgroup of G, HON is a normal subgroup of H, and 


H/HON@HN/N. 


Proor. We will first show that HN = {hn:h € H,n € N} is a subgroup of 
G. Suppose that hyn, hang € HN. Since N is normal, (h2)~!nyh2 € N. So 


(hini)(heng) = hihe((h2)nih2)n2 


is in HN. The inverse of hn € HN is in HN since 


(hn), PSa hk Sh in th). 


Next, we prove that HM N is normal in H. Leth¢€ H andnec ANN. 
Then h~!nh € H since each element is in H. Also, h~!nh € N since N is 
normal in G; therefore, h~!nh Ee HNN. 

Now define a map ¢ from H to HN/N by ht+> AN. The map ¢ is onto, 
since any coset hnN = AN is the image of h in H. We also know that ¢ is a 
homomorphism because 


o(hh’) = hh’N = RNIN = o(h)o(h’). 


By the First Isomorphism Theorem, the image of ¢ is isomorphic to H/ ker ¢; 
that is, 
HN/N = $(A) = H/ ker ¢. 


Since 
kerr @={heEeH:heNJ=HNN, 


HN/N = ¢(H)& H/HON. 


Theorem 11.5 (Correspondence Theorem) Let N be a normal sub- 
group of a group G. Then H ++ H/N is a one-to-one correspondence between 
the set of subgroups H containing N and the set of subgroups of G/N. 
Furthermore, the normal subgroups of H correspond to normal subgroups 


of G/N. 


Proor. Let H be a subgroup of G containing N. Since N is normal 
in H, H/N makes sense. Let aN and bN be elements of H/N. Then 
(aN)(b-!N) = ab-!N € H/N; hence, H/N is a subgroup of G/N. 
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Let S be a subgroup of G/N. This subgroup is a set of cosets of N. If 
H={g€G:gN € 8S}, then for hi, ho € H, we have that (hi N)(hoN) = 
hh'N € S and hy'N € S. Therefore, H must be a subgroup of G. Clearly, 
H contains N. Therefore, S = H/N. Consequently, the map H +> N/H is 
onto. 

Suppose that H, and H2 are subgroups of G containing N such that 
H,/N = H2/N. If hy € Ay, then hy N € H,/N. Hence, hyN = hogN C Ho 
for some hg in Hj. However, since N is contained in Ho, we know that 
hy € Ho or Hy C Ay. Similarly, Ho C Hy. Since Hy = Ho, the map 
H + N/H is one-to-one. 

Suppose that H is normal in G and N is a subgroup of H. Then it 
is easy to verify that the map G/N — G/H defined by gN +> gH isa 
homomorphism. The kernel of this homomorphism is H/N, which proves 
that H/N is normal in G/N. 

Conversely, suppose that H/N is normal in G/N. The homomorphism 
given by 
G/N 
H/N 


has kernel H. Hence, H must be normal in G. 


G->G/N-> 


Notice that in the course of the proof of Theorem 11.5, we have also 
proved the following theorem. 


Theorem 11.6 (Third Isomorphism Theorem) Let G be a group and 
N and H be normal subgroups of G with N C H. Then 


G/N 
Ae —_., 
Gi H/N 
Example 9. By the Third Isomorphism Theorem, 


ZmZ % (Z/mnZ)/(mZ/mnZ). 


Since |Z/mnZ| = mn and |Z/mZ| = m, we have |mZ/mnZ| = n. a 


Exercises 


1. Prove that det(AB) = det(A) det(B) for A,B € GL2(R). This shows that 
the determinant is a homomorphism from GL2(R) to R*. 
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2. Which of the following maps are homomorphisms? If the map is a homomor- 
phism, what is the kernel? 


(a) 6: R* + GL2(R) defined by 


(b) ¢:R— GL2(R) defined by 


where My(R) is the additive group of 2 x 2 matrices with entries in R. 


3. Let A be an m x n matrix. Show that matrix multiplication, x +> Az, defines 
a homomorphism ¢: R” > R™. 


4, Let 6:Z > Z be given by ¢(n) = 7n. Prove that ¢ is a group homomorphism. 
Find the kernel and the image of ¢. 


5. Describe all of the homomorphisms from Z24 to Zj38. 
6. Describe all of the homomorphisms from Z to Z2. 
7. In the group Za4, let H = (4) and N = (6). 
(a) List the elements in HN (we usually write H + N for these additive 
groups) and HNN. 
(b) List the cosets in HN/N, showing the elements in each coset. 
(c) List the cosets in H/(HMN), showing the elements in each coset. 


(d) Give the correspondence between HN/N and H/(H1™N) described in 
the proof of the Second Isomorphism Theorem. 
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8. 


10. 


11. 


12. 


13. 


14. 


15. 


16. 


17. 


18. 


19. 


20. 


If G is an abelian group and n € N, show that ¢: G — G defined by g++ g” 
is a group homomorphism. 


. If 6: G— FH is a group homomorphism and G is abelian, prove that $(G) is 


also abelian. 


If 6: G > H is a group homomorphism and G is cyclic, prove that ¢(G) is 
also cyclic. 


Show that a homomorphism defined on a cyclic group is completely determined 
by its action on the generator of the group. 


Let G be a group of order p*, where p is a prime number. If H is a subgroup 
of G of order p, show that H is normal in G. Prove that G must be abelian. 


If a group G has exactly one subgroup H of order k, prove that H is normal 
inG. 


Prove or disprove: Q/Z = Q. 


Let G be a finite group and N a normal subgroup of G. If H is a subgroup 
of G/N, prove that ¢~!(H) is a subgroup in G of order |H| - |N|, where 
@:G-— G/N is the canonical homomorphism. 


Let G and G2 be groups, and let H, and H2 be normal subgroups of G, and 
Gp» respectively. Let ¢ : G1 + G2 be a homomorphism. Show that ¢ induces 
a natural homomorphism ¢ : (G1 /Hi) > (G2/H2) if 6(A1) C Ae. 


If H and K are normal subgroups of G and HN K = {e}, prove that G is 
isomorphic to a subgroup of G/H x G/K. 


Let @: G, — G2 be a surjective group homomorphism. Let H, be a normal 
subgroup of G; and suppose that ¢(H,) = Hp». Prove or disprove that 
G1 /H, = Go/Ho. 


Let 6: G— H be a group homomorphism. Show that ¢ is one-to-one if and 
only if d~'(e) = {e}. 


Given a homomorphism ¢: G — H define a relation ~ on G by a ~ 6 if 
g(a) = ¢(b) for a,b € G. Show this relation is an equivalence relation and 
describe the equivalence classes. 


Additional Exercises: Automorphisms 


1. 


2. 


Let Aut(G) be the set of all automorphisms of G; that is, isomorphisms from 
G to itself. Prove this set forms a group and is a subgroup of the group of 
permutations of G; that is, Aut(G) < Sq. 


An inner automorphism of G, 


ig: GG, 
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10. 
11. 


12. 
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is defined by the map 


ig@) = gag *, 


for g € G. Show that i, € Aut(G). 


. The set of all inner automorphisms is denoted by Inn(G). Show that Inn(G) 


is a subgroup of Aut(G). 


. Find an automorphism of a group G that is not an inner automorphism. 


. Let G be a group and i, be an inner automorphism of G, and define a map 


G > Aut(G) 
by 
gt lg. 


Prove that this map is a homomorphism with image Inn(G) and kernel Z(G). 
Use this result to conclude that 


G/Z(G) = Inn(G). 


. Compute Aut(S3) and Inn(S3). Do the same thing for D4. 

. Find all of the homomorphisms ¢: Z + Z. What is Aut(Z)? 

. Find all of the automorphisms of Zg. Prove that Aut(Zg) = U(8). 

. For k € Z,, define a map ¢, : Zn > Zp, by a ka. Prove that oy is a 


homomorphism. 
Prove that ¢, is an isomorphism if and only if & is a generator of Zp. 


Show that every automorphism of Z,, is of the form ¢,, where k is a generator 
of Zp. 


Prove that w : U(n) > Aut(Z,,) is an isomorphism, where w : k +> @x. 


Sage Sage can create homomorphisms between groups, which can be used 
directly as functions, and then queried for their kernels and images. So there 
is great potential for exploring the many fundamental relationships between 
groups, normal subgroups, quotient groups and properties of homomorphisms. 


12 


Matrix Groups and 
Symmetry 


When Felix Klein (1849-1925) accepted a chair at the University of Erlangen, 
he outlined in his inaugural address a program to classify different geometries. 
Central to Klein’s program was the theory of groups: he considered geometry 
to be the study of properties that are left invariant under transformation 
groups. Groups, especially matrix groups, have now become important in 
the study of symmetry and have found applications in such disciplines as 
chemistry and physics. In the first part of this chapter, we will examine some 
of the classical matrix groups, such as the general linear group, the special 
linear group, and the orthogonal group. We will then use these matrix groups 
to investigate some of the ideas behind geometric symmetry. 


12.1 Matrix Groups 


Some Facts from Linear Algebra 


Before we study matrix groups, we must recall some basic facts from linear 
algebra. One of the most fundamental ideas of linear algebra is that of a linear 
transformation. A linear transformation or linear map T : R” > R™ 
is a map that preserves vector addition and scalar multiplication; that is, for 
vectors x and y in R” and a scalar a ER, 


T(x+y) =T(x)+T(y) 
T(ay) = aT(y). 


An m X n matrix with entries in R represents a linear transformation from 
R” to R™. If we write vectors x = (21,...,2n)° and y = (y1,..-,Yn)* in R” 
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as column matrices, then an m x n matrix 


Qa11 ai2 Qin 

a21 a22 a2n 
A= . 

Qm1 Gm2 ‘** Amn 


maps the vectors to R™ linearly by matrix multiplication. Observe that if a 
is a real number, 


A(x+y) = Ax+ Ay and aAx = A(ax), 


where 


In 


We will often abbreviate the matrix A by writing (a;;). 
Conversely, if T : R” > R™ is a linear map, we can associate a matrix A 
with T by considering what T does to the vectors 


C= (00; pel As 
We can write any vector x = (21,...,2n)* as 
re, + LQ€Q + +++ + ILyEn.- 
Consequently, if 


T(e1) = (a11, @21, sei sO) S 


T(e2) = (a1, a22,.--,Am2)*, 


T (en) = (Gin, Q2n,++- Reg 
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then 


T(x) = T(a1e1 + x2e2 + +++ + nen) 
= x T(e1) + x2T (e2) Ses InT (en) 


n n t 
= S Ak ky +++ S Amkvk 
k=1 k=1 


= Ax. 


Example 1. If we let T : R? > R? be the map given by 
T (a1, 2) = (221 + 5x2, —421 + 322), 


the axioms that T must satisfy to be a linear transformation are easily 
verified. The column vectors Te; = (2, —4)* and Teg = (5,3)* tell us that T 


is given by the matrix 
2 5 
1=(2,°). 


Since we are interested in groups of matrices, we need to know which 
matrices have multiplicative inverses. Recall that an n x n matrix A is 
invertible exactly when there exists another matrix A~! such that AA7! = 
A-!A =I, where 


10 -:. 0 

0 1 0 
T= 

00 -.-.- 1 


is the n x n identity matrix. From linear algebra we know that A is invertible 
if and only if the determinant of A is nonzero. Sometimes an invertible 
matrix is said to be nonsingular. 


Example 2. If A is the matrix 


then the inverse of A is 
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We are guaranteed that A! exists, since det(A) = 2-3—5-1=1 is nonzero. 
| 


Some other facts about determinants will also prove useful in the course 
of this chapter. Let A and B be n x n matrices. From linear algebra we have 
the following properties of determinants. 


e The determinant is a homomorphism into the multiplicative group of 
real numbers; that is, det(AB) = (det A)(det B). 


e If A is an invertible matrix, then det(A~!) = 1/ det A. 


e If we define the transpose of a matrix A = (aj;) to be A‘ = (a;;), then 
det(A‘) = det A. 


e Let T be the linear transformation associated with an n x n matrix A. 
Then 7 multiplies volumes by a factor of | det A]. In the case of R?, 
this means that T multiplies areas by | det A]. 


Linear maps, matrices, and determinants are covered in any elementary 
linear algebra text; however, if you have not had a course in linear algebra, 
it is a straightforward process to verify these properties directly for 2 x 2 
matrices, the case with which we are most concerned. 


The General and Special Linear Groups 


The set of all n x n invertible matrices forms a group called the general 
linear group. We will denote this group by GL,(R). The general linear 
group has several important subgroups. The multiplicative properties of 
the determinant imply that the set of matrices with determinant one is a 
subgroup of the general linear group. Stated another way, suppose that 
det(A) = 1 and det(B) = 1. Then det(AB) = det(A)det(B) = 1 and 
det(A~!) = 1/det A =1. This subgroup is called the special linear group 
and is denoted by SL,,(R). 


Example 3. Given a 2 x 2 matrix 
a b 
a= (0 a) 
the determinant of A is ad — bc. The group GL2(R) consists of those matrices 
in which ad — bc £ 0. The inverse of A is 


i a0 
At = 
ad — be & a ) 
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g(a 7 
~\-e al)’ 


Geometrically, SZ2(R) is the group that preserves the areas of parallelograms. 


Let 
1 1 
4=(9 3) 


be in SZ2(R). In Figure 12.1, the unit square corresponding to the vectors 
x = (1,0)' and y = (0,1)' is taken by A to the parallelogram with sides 
(1,0)' and (1,1)*; that is, Ax = (1,0)' and Ay = (1,1). Notice that these 
two parallelograms have the same area. | 


If A is in SLZo(R), then 


(0, 1) 


(1,0) . (1,0) * 
Figure 12.1. SZ2(R) acting on the unit square 


The Orthogonal Group O(n) 


Another subgroup of GL,,(R) is the orthogonal group. A matrix A is or- 
thogonal if A~! = At. The orthogonal group consists of the set of all 
orthogonal matrices. We write O(n) for the n x n orthogonal group. We 
leave as an exercise the proof that O(n) is a subgroup of GLn(R). 


Example 4. The following matrices are orthogonal: 


-1//2 0 1/2 
Ge Bae Gs 7 VE —2/VB 1/V6 
ie ee ORE te v3 1/v3_ v3 
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There is a more geometric way of viewing the group O(n). The orthogonal 
matrices are exactly those matrices that preserve the length of vectors. We 
can define the length of a vector using the Euclidean inner product, or 
dot product, of two vectors. The Euclidean inner product of two vectors 


= (Ciao G_) Bnd ¥ = (His s4eg Ga)" 18 
Y1 
t Y2 
(x,y) = X'y = (1, %2,.--,2n) |. | = 2iyr +--+ + onYn- 
Yn 


We define the length of a vector x = (71,...,2n)* to be 


xl] = Ge) = yah + + 22. 


Associated with the notion of the length of a vector is the idea of the distance 
between two vectors. We define the distance between two vectors x and y 
to be ||x — y||. We leave as an exercise the proof of the following proposition 
about the properties of Euclidean inner products. 


Proposition 12.1 Let x, y, and w be vectors in R" anda €R. Then 


1. (x,y) = (y,). 
2. (x,y + w) = (x,y) + (x, W). 
(ax 


3. (ax, y) = (x, ay) = a(x, y). 
4. (x,x) > 0 with equality exactly when x = 0. 


5. If (x,y) = 0 for all x in R", then y = 0. 


Example 5. The vector x = (3,4)' has length V3? + 42 = 5. We can also 
see that the orthogonal matrix 


ea ae eg 


preserves the length of this vector. The vector Ax = (—7/5, 24/5)' also has 
length 5. | 
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Since det(AA*) = det(Z) = 1 and det(A) = det(A*), the determinant of 
any orthogonal matrix is either 1 or —1. Consider the column vectors 


of the orthogonal matrix A = (a;;). Since AA‘ = I, (a;,as) = ds, where 


l r=s 
sa ={ 0 r#s 


is the Kronecker delta. Accordingly, column vectors of an orthogonal matrix 
all have length 1; and the Euclidean inner product of distinct column vectors is 
zero. Any set of vectors satisfying these properties is called an orthonormal 
set. Conversely, given an n Xn matrix A whose columns form an orthonormal 
set, A7} = At. 

We say that a matrix A is distance-preserving, length-preserving, 
or inner product-preserving when ||T'x—Ty|| = ||x—y]l, ||7x|] = ||x||, or 
(Tx, Ty) = (x,y), respectively. The following theorem, which characterizes 
the orthogonal group, says that these notions are the same. 


Theorem 12.2 Let A be ann xn matrix. The following statements are 
equivalent. 


1. The columns of the matrix A form an orthonormal set. 
2A SA} 

3. For vectors x and y, (Ax, Ay) = (x,y). 

4. For vectors x and y, ||Ax — Ay|| = ||x —y||. 

5. For any vector x, ||Ax|| = ||x||- 


PRoor. We have already shown (1) and (2) to be equivalent. 
(2) > (8). 
(Ax, Ay) = (Ax)' Ay 
= x'AtAy 


= (x,y). 


186 CHAPTER 12. MATRIX GROUPS AND SYMMETRY 


(3) => (2). Since 
(x, x) = (Ax, Ax) 
= x' At Ay 
= (x, A Ax), 
we know that (x, (A‘A — J)x) = 0 for all x. Therefore, AtA — I = 0 or 
Ae": 
(3) = (4). If A is inner product-preserving, then A is distance-preserving, 
since 
|| Ax — Ay|? = ||A@& — y)|)? 
= (A(x — y), A(x — y)) 
= (x —y,x— y) 
= ||x— yl. 


(4) = (5). If A is distance-preserving, then A is length-preserving. 
Letting y = 0, we have 


|| Ax|| = || Ax — Ayll = lx — yll = [xl 


(5) = (3). We use the following identity to show that length-preserving 
implies inner product-preserving: 


1 
(XY) = 5 [IIx + yl? — [xl]? - Ilyll?] . 
Observe that 


(Ax, Ay) = 5 [||Ax + Ay]l? — || Axll? — [Ay I7] 


[AG + y) I? — Axl? — [AyII7] 


Oe el SON el SO ee 


[ll + yl? = Ux? = ly?) 


t 
* 
= 


Example 6. Let us examine the orthogonal group on R? a bit more closely. 
An element T € O(2) is determined by its action on e; = (1,0)' and 
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(sin 6, — cos 0) 


(a, b) (cos 0, sin 0) 


Figure 12.2. O(2) acting on R? 


e2 = (0, 1)*. If T(e1) = (a, b)', then a? + b? = 1 and T(e2) = (—b, a)*. Hence, 
T can be represented by 


Au{? —b\ _ (cos@ —siné 
~\b a/J \sin@ cosé /’ 


where 0 < @ < 2x. A matrix T in O(2) either reflects or rotates a vector 
in R? (Figure 12.2). A reflection about the horizontal axis is given by the 


matrix 
1 O 
0 -1/)’ 


whereas a rotation by an angle @ in a counterclockwise direction must come 
from a matrix of the form 

cos@ sind 

sind —cos@}~ 


A reflection about a line @ is simply a reflection about the horizontal axis 
followed by a rotation. If det A = —1, then A gives a reflection. | 


Two of the other matrix or matrix-related groups that we will consider 
are the special orthogonal group and the group of Euclidean motions. The 
special orthogonal group, SO(n), is just the intersection of O(n) and 
SIn(R); that is, those elements in O(n) with determinant one. The Eu- 
clidean group, F'(n), can be written as ordered pairs (A,x), where A is in 
O(n) and x is in R”. We define multiplication by 


(A, x)(B,y) = (AB, Ay + x). 
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The identity of the group is (I,0); the inverse of (A,x) is (A~!,-A7!x). In 
Exercise 6, you are asked to check that E(n) is indeed a group under this 
operation. 


al | 


Figure 12.3. Translations in R? 


12.2 Symmetry 


An isometry or rigid motion in R” is a distance-preserving function f 
from R” to R”. This means that f must satisfy 


IFC) — F(y)Il = Ik - yl 


for all x,y € R”. It is not difficult to show that f must be a one-to-one map. 
By Theorem 12.2, any element in O(n) is an isometry on R”; however, O(n) 
does not include all possible isometries on R”. Translation by a vector x, 
Ty(x) = x+y is also an isometry (Figure 12.3); however, T cannot be in 
O(n) since it is not a linear map. 

We are mostly interested in isometries in R?. In fact, the only isome- 
tries in R? are rotations and reflections about the origin, translations, and 
combinations of the two. For example, a glide reflection is a translation 
followed by a reflection (Figure 12.4). In R” all isometries are given in the 
same manner. The proof is very easy to generalize. 


Lemma 12.3 An isometry f that fies the origin in R? is a linear transfor- 
mation. In particular, f is given by an element in O(2). 
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Plies 


Figure 12.4. Glide reflections 


ProoF. Let f be an isometry in R? fixing the origin. We will first show that 
f preserves inner products. Since f(0) = 0, ||f(x)|| = ||x||; therefore, 


lll? — 20x), F(y)) + lly? = IFGOIP — 2F(&), FY) + IFIP 
f(x) — fly), Fx) — fly) 
= 2 


— 


= (x—y,x-—y) 
= ||x|? — 2(x,y) + lly|l?. 


Consequently, 
(f(x), fy)) = & y). 
Now let e; and e2 be (1,0)' and (0, 1)', respectively. If 


X = (x1, £2) = 71e; + X2e2, 


f(x) = (F(x), Fler) Fler) + (F0x), Fle2)) fez) = v1 f(e1) + v2 f(e2). 


The linearity of f easily follows. 


For any arbitrary isometry, f, Ty f will fix the origin for some vector 
x in R?; hence, Tx f(y) = Ay for some matrix A € O(2). Consequently, 
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f(y) = Ay +x. Given the isometries 


f(y) = Ay + x1 
gly) = By + x2, 


their composition is 
f(g(y)) = f(By + x2) = ABy + Axo +1. 


This last computation allows us to identify the group of isometries on R? 
with E(2). 


Theorem 12.4 The group of isometries on R? is the Euclidean group, E(2). 


A symmetry group in R” is a subgroup of the group of isometries on 
R” that fixes a set of points X C R?. It is important to realize that the 
symmetry group of X depends both on R” and on X. For example, the 
symmetry group of the origin in R! is Zy, but the symmetry group of the 
origin in R? is O(2). 


Theorem 12.5 The only finite symmetry groups in R? are Zn and Dy. 


Proor. Any finite symmetry group G in R? must be a finite subgroup of 
O(2); otherwise, G would have an element in (2) of the form (A, x), where 
x #0. Such an element must have infinite order. 

By Example 6, elements in O(2) are either rotations of the form 


cos? —sind 
ae te cos 0 ) 
or reflections of the form 


qT. = ce a) € 0 ) 7 (a sind ) 
*~\sind cosd 0 -1/ \sind —cosd/)’ 

Notice that det(Rg) = 1, det(Ty) = —1, and is = I. We can divide the 
proof up into two cases. In the first case, all of the elements in G have 
determinant one. In the second case, there exists at least one element in G 
with determinant —1. 

Case 1. The determinant of every element in G is one. In this case every 
element in G must be a rotation. Since G is finite, there is a smallest angle, 
say 09, such that the corresponding element Rg, is the smallest rotation in 
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the positive direction. We claim that Rg, generates G. If not, then for some 
positive integer n there is an angle 9; between np and (n+ 1)0o. If so, then 
(n + 1)@) — 91 corresponds to a rotation smaller than 69, which contradicts 
the minimality of 60. 

Case 2. The group G contains a reflection 7. The kernel of the homo- 
morphism ¢: G — {—1,1} given by A+> det(A) consists of elements whose 
determinant is 1. Therefore, |G/ ker ¢| = 2. We know that the kernel is cyclic 
by the first case and is a subgroup of G of, say, order n. Hence, |G| = 2n. 
The elements of G are 


Riegel Megs 
These elements satisfy the relation 


The? =H, 


Consequently, G must be isomorphic to D, in this case. 


Rae se shes 
WRHOWL REN 


Figure 12.5. A wallpaper pattern in R? 


The Wallpaper Groups 


Suppose that we wish to study wallpaper patterns in the plane or crystals in 
three dimensions. Wallpaper patterns are simply repeating patterns in the 
plane (Figure 12.5). The analogs of wallpaper patterns in R® are crystals, 
which we can think of as repeating patterns of molecules in three dimensions 
(Figure 12.6). The mathematical equivalent of a wallpaper or crystal pattern 
is called a lattice. 

Let us examine wallpaper patterns in the plane a little more closely. 
Suppose that x and y are linearly independent vectors in R?; that is, one 
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za 


Figure 12.6. A crystal structure in R® 


vector cannot be a scalar multiple of the other. A lattice of x and y is the 
set of all linear combinations mx + ny, where m and n are integers. The 
vectors x and y are said to be a basis for the lattice. 


Figure 12.7. A lattice in R? 


Notice that a lattice can have several bases. For example, the vectors 
(1,1)* and (2,0)' have the same lattice as the vectors (—1,1)* and (—1,-1)° 
(Figure 12.7). However, any lattice is completely determined by a basis. 
Given two bases for the same lattice, say {x,, x2} and {y1, y2}, we can write 


Y1 = 1X1 + AQKQ 


y2 = 81x1 + Boxe, 
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where aj, G2, (1, and (2 are integers. The matrix corresponding to this 


transformation is 
ay ag 
U= : 
« a 


If we wish to give x; and x2 in terms of y,; and yg, we need only calculate 


U-1: that is, 
“)-€) 
y2 x2) - 


Since U has integer entries, U~' must also have integer entries; hence the 
determinants of both U and U~! must be integers. Because UU~! = J, 


det(UU—') = det(U) det(U~") = 1; 


consequently, det(U) = +1. A matrix with determinant +1 and integer 
entries is called unimodular. For example, the matrix 


3 1 
(3 2) 
is unimodular. It should be clear that there is a minimum length for vectors 
in a lattice. 

We can classify lattices by studying their symmetry groups. The sym- 
metry group of a lattice is the subgroup of E(2) that maps the lattice to 
itself. We consider two lattices in R? to be equivalent if they have the same 
symmetry group. Similarly, classification of crystals in R® is accomplished 
by associating a symmetry group, called a space group, with each type of 
crystal. Two lattices are considered different if their space groups are not the 
same. The natural question that now arises is how many space groups exist. 

A space group is composed of two parts: a translation subgroup and 
a point group. The translation subgroup is an infinite abelian subgroup 
of the space group made up of the translational symmetries of the crystal; 
the point group is a finite group consisting of rotations and reflections of 
the crystal about a point. More specifically, a space group is a subgroup of 
G c E(2) whose translations are a set of the form {(J,t):t € L}, where L 
is a lattice. Space groups are, of course, infinite. Using geometric arguments, 
we can prove the following theorem (see [5] or [6]). 


Theorem 12.6 Every translation group in R? is isomorphic to Z x Z. 


The point group of G is Go = {A: (A,b) € G for some 6}. In particular, 
Go must be a subgroup of O(2). Suppose that x is a vector in a lattice 
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Rectangular 


y HA = 


Parallelogram 


Le Hexagonal 


Figure 12.8. Types of lattices in R? 


L with space group G, translation group H, and point group Go. For any 
element (A,y) in G, 


(A,y)(I,x)(A,y)* = (A, Ax + y)(A“*, -A“y) 
= (AA!,-AA ly + Ax+y) 
= (1, An) 


hence, (I, Ax) is in the translation group of G. More specifically, Ax must 
be in the lattice L. It is important to note that Go is not usually a subgroup 
of the space group G; however, if T is the translation subgroup of G, then 
G/T = Go. The proof of the following theorem can be found in [2], [5], or [6]. 


Theorem 12.7 The point group in the wallpaper groups is isomorphic to 
Zn or Dn, where n = 1,2,3,4,6. 


To answer the question of how the point groups and the translation 
groups can be combined, we must look at the different types of lattices. 
Lattices can be classified by the structure of a single lattice cell. The possible 
cell shapes are parallelogram, rectangular, square, rhombic, and hexagonal 
(Figure 12.8). The wallpaper groups can now be classified according to the 
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types of reflections that occur in each group: these are ordinarily reflections, 
glide reflections, both, or none. 


Table 12.1. The 17 wallpaper groups 


Notation and Reflections 
Space Groups | Point Group | Lattice Type | or Glide Reflections? 
pl Zy parallelogram | none 

p2 LZ parallelogram | none 

p3 Zs hexagonal none 

p4 Za square none 

p6 Ze hexagonal none 

pm dD, rectangular reflections 

pg dD, rectangular glide reflections 
cm Dy rhombic both 

pmm Dz rectangular reflections 

pmg Do rectangular glide reflections 
pgg Ds rectangular both 

c2mm Doz rhombic both 

p3ml, p3lm D3 hexagonal both 

p4m, p4g D4 square both 

p6m De hexagonal both 


Theorem 12.8 There are exactly 17 wallpaper groups. 


pam pAg 


Figure 12.9. The wallpaper groups p4m and p4g 


The 17 wallpaper groups are listed in Table 12.1. The groups p3m1 and 
p3lm can be distinguished by whether or not all of their threefold centers lie 
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on the reflection axes: those of p3m1 must, whereas those of p3lm may not. 
Similarly, the fourfold centers of p4m must lie on the reflection axes whereas 
those of p4g need not (Figure 12.9). The complete proof of this theorem can 
be found in several of the references at the end of this chapter, including [5], 
[6], [10], and [11]. 


Historical Note | 


Symmetry groups have intrigued mathematicians for a long time. Leonardo da Vinci 
was probably the first person to know all of the point groups. At the International 
Congress of Mathematicians in 1900, David Hilbert gave a now-famous address 
outlining 23 problems to guide mathematics in the twentieth century. Hilbert’s 
eighteenth problem asked whether or not crystallographic groups in n dimensions 
were always finite. In 1910, L. Bieberbach proved that crystallographic groups 
are finite in every dimension. Finding out how many of these groups there are in 
each dimension is another matter. In R® there are 230 different space groups; in 
IR‘ there are 4783. No one has been able to compute the number of space groups 
for R° and beyond. It is interesting to note that the crystallographic groups were 
found mathematically for R? before the 230 different types of crystals were actually 


discovered in nature. 


Exercises 


1. Prove the identity 


(x,y) = 5 [lhe + yll? = Ie? = lly?) . 


2. Show that O(n) is a group. 


3. Prove that the following matrices are orthogonal. Are any of these matrices 


in SO(n)? 
(a) (c) 
1 =1)2 4//5 0 3/V5 
wey (Saws 
(b) - 


13. “29 -=973 
Gy ae “9/5 2/3 1/3 
—2//5 1/5 =2/3. 1/3 2/3 
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4. 


5. 


Determine the symmetry group of each of the figures in Figure 12.10. 


(b) 


Figure 12.10. 


Let x, y, and w be vectors in R” and a € R. Prove each of the following 
properties of inner products. 


(a) (x,y) = (y,x). 


(b) (x,y +w) = (x,y) + (2x, w). 

(c) (ax, y) = (x, ay) = a(x, y). 

(d) (x,x) > 0 with equality exactly when x = 0. 
(e) If (x,y) =0 for all x in R”, then y = 0. 


. Verify that 


E(n) = {(A,x): A € O(n) and x € R™} 


is a group. 


. Prove that {(2,1), (1,1)} and {(12,5), (7,3)} are bases for the same lattice. 
. Let G be a subgroup of £(2) and suppose that T is the translation subgroup 


of G. Prove that the point group of G is isomorphic to G/T. 


. Let A € SLZ2(R) and suppose that the vectors x and y form two sides of a 


parallelogram in R?. Prove that the area of this parallelogram is the same as 
the area of the parallelogram with sides Ax and Ay. 


. Prove that SO(n) is a normal subgroup of O(n). 
. Show that any isometry f in R” is a one-to-one map. 


. Show that an element in E(2) of the form (A,x), where x ¥ 0, has infinite 


order. 


. Prove or disprove: There exists an infinite abelian subgroup of O(n). 
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14. 


15. 


16. 


17. 


18. 
19. 
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Let x = (x1, 22) be a point on the unit circle in R?; that is, 2? + 23 = 1. If 
A € O(2), show that Ax is also a point on the unit circle. 


Let G be a group with a subgroup H (not necessarily normal) and a normal 
subgroup N. Then G is a semidirect product of N by H if 


e HON = {id}; 
e HN=G. 
Show that each of the following is true. 
(a) 53 is the semidirect product of Az by H = {(1), (12)}. 


(b) The quaternion group, Qg, cannot be written as a semidirect product. 


(c) E(2) is the semidirect product of O(2) by H, where H consists of all 
translations in R?. 


Determine which of the 17 wallpaper groups preserves the symmetry of the 


Pen 


Figure 12.11. 


Determine which of the 17 wallpaper groups preserves the symmetry of the 
pattern in Figure 12.11. 


Find the rotation group of a dodecahedron. 


For each of the 17 wallpaper groups, draw a wallpaper pattern having that 
group as a symmetry group. 
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13) 
The Structure of Groups 


The ultimate goal of group theory is to classify all groups up to isomorphism; 
that is, given a particular group, we should be able to match it up with a 
known group via an isomorphism. For example, we have already proved that 
any finite cyclic group of order n is isomorphic to Z,; hence, we “know” all 
finite cyclic groups. It is probably not reasonable to expect that we will ever 
know all groups; however, we can often classify certain types of groups or 
distinguish between groups in special cases. 

In this chapter we will characterize all finite abelian groups. We shall also 
investigate groups with sequences of subgroups. If a group has a sequence of 
subgroups, say 


G= Hy Aya DD AyD Ae = teh, 


where each subgroup H; is normal in H;4; and each of the factor groups 
Hj41/H,; is abelian, then G is a solvable group. In addition to allowing us to 
distinguish between certain classes of groups, solvable groups turn out to be 
central to the study of solutions to polynomial equations. 


13.1 Finite Abelian Groups 


In our investigation of cyclic groups we found that every group of prime order 
was isomorphic to Z,, where p was a prime number. We also determined 
that Zmn = Zm X Zp when ged(m,n) = 1. In fact, much more is true. Every 
finite abelian group is isomorphic to a direct product of cyclic groups of 
prime power order; that is, every finite abelian group is isomorphic to a 
group of the type 

Zy de Zpon. 
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First, let us examine a slight generalization of finite abelian groups. 
Suppose that G is a group and let {g;} be a set of elements in G, where 7 
is in some index set I (not necessarily finite). The smallest subgroup of G 
containing all of the g;’s is the subgroup of G generated by the g;’s. If this 
subgroup of G is in fact all of G, then G is generated by the set {g; : 7 € I}. 
In this case the g;’s are said to be the generators of G. If there is a finite 
set {g; : 7 € I} that generates G, then G is finitely generated. 


Example 1. Obviously, all finite groups are finitely generated. For example, 
the group S3 is generated by the permutations (12) and (123). The group 
Z Xx Zp, is an infinite group but is finitely generated by {(1,0),(0,1)}. 


Example 2. Not all groups are finitely generated. Consider the rational 
numbers Q under the operation of addition. Suppose that Q is finitely 


generated with generators p/q@,.--,;Pn/Gn, where each p;/q; is a fraction 
expressed in its lowest terms. Let p be some prime that does not divide 
any of the denominators q1,...,@n. We claim that 1/p cannot be in the 


subgroup of Q that is generated by pi/qi,.--,;Pn/Gn, Since p does not divide 
the denominator of any element in this subgroup. This fact is easy to see 
since the sum of any two generators is 


pi/G + vi/a; = (pig + 159%) /(G:q;)- 


Theorem 13.1 Let H be the subgroup of a group G that is generated by 
{g,€G:ielI}. Thenh € H exactly when it is a product of the form 


fg ey 
where the gi, ’s are not necessarily distinct. 


The reason that powers of a fixed g; may occur several times in the 
product is that we may have a nonabelian group. However, if the group is 
abelian, then the g;’s need occur only once. For example, a product such as 
a~*b°a" could always be simplified (in this case, to a4b°). 


ProoFr. Let K be the set of all products of the form 9%, ---g", where the 
gi, '8 are not necessarily distinct. Certainly K is a subset of H. We need 
only show that K is a subgroup of G. If this is the case, then K = H, since 
AT is the smallest subgroup containing all the g;’s. 
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Clearly, the set K is closed under the group operation. Since g? = 1, 
the identity is in K. It remains to show that the inverse of an element 
g= ge .- ge in K must also be in kK. However, 


— k kn 
g SGP Sg) Sg eG, 


Now let us restrict our attention to finite abelian groups. We can express 
any finite abelian group as a finite direct product of cyclic groups. More 
specifically, letting p be prime, we define a group G to be a p-group if every 
element in G has as its order a power of p. For example, both Z2 x Z2 and 
Za are 2-groups, whereas Zo7 is a 3-group. We shall prove that every finite 
abelian group is isomorphic to a direct product of cyclic p-groups. Before we 
state the main theorem concerning finite abelian groups, we shall consider a 
special case. 


Theorem 13.2 Every finite abelian group G is the direct product of p-groups. 


ProorF. If |G| = 1, then the theorem is trivial. Suppose that the order of G 
is greater than 1, say 
|G] = pp + Pn”, 


where pj,..., Pn are all prime, and define G; to be the set of elements in G of 
order pk for some integer k. Since G is an abelian group, we are guaranteed 
that G; is a subgroup of G fori =1,...,n. We must show that 


G=G, xX--:X Gn. 


That is, we must be able to write every g € G as a unique product gp, --* Jpn 
where gp, is of the order of some power of p;. Since the order of g divides 
the order of G, we know that 

lg] = py py? span 
for integers $1,...,6,. Letting a; = lol /pe, the a,;’s are relatively prime; 
hence, there exist integers b),...,6, such that a,b; +---+anb, = 1. Conse- 


quently, 
a1by+--+anbn = gut O4.23 


anbn 


gI=9g9 g 


Since " 
gribPi* Be ghilgl =e, 
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it follows that g™ must be in G;. Let g; = g%®'. Then g = g1---gn and 
GpiiG; = fe} fori #7. 
To show uniqueness, suppose that g = g1--- gn = h1--- Ay, with hy € Gj. 
Then 
€ = (91+ Gn)(ha ++ Pn)? = gry! + gah 
The order of gjh; | is a power of p;; hence, the order of gh; * -++gnhz' is the 


least common multiple of the orders of the gih;'. This must be 1, since the 
order of the identity is 1. Therefore, loin *| =lorg; =h; fori=1,...,n. 


We shall now state the Fundamental Theorem of Finite Abelian Groups. 


Theorem 13.3 (Fundamental Theorem of Finite Abelian Groups) 
Every finite abelian group G is isomorphic to a direct product of cyclic groups 
of the form 

Zo x Z02 xr XK Zan 


where the p;’s are primes (not necessarily distinct). 


Example 3. Suppose that we wish to classify all abelian groups of order 
540 = 2? .3°-5. The Fundamental Theorem of Finite Abelian Groups tells 
us that we have the following six possibilities. 


e Ze x Vp) x Z3 x LZ3 x Z3 x Ls; 


e Zo x i) x L3 x Ly x Ls; 


e Ze x i) x Loz x Zs; 


e LA x Z3 x Z3 x LZ3 x Zs; 


e Z4 x Z3 x Zg Xx Zs; 


e Za x Zaz x Zs. 
a 


The proof of the Fundamental Theorem relies on the following lemma. 


Lemma 13.4 Let G be a finite abelian p-group and suppose that g € G has 
maximal order. Then G' can be written as (g) x H for some subgroup H of G. 
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PROOF. Suppose that the order of G is p”. We shall induct on n. If n = 1, 
then G is cyclic of order p and must be generated by g. Suppose now that 
the statement of the lemma holds for all integers k with 1 < k < n and 
let g be of maximal order in G, say |g| =p”. Then a?” =e for alla € G. 
Now choose h in G such that h ¢ (g), where h has the smallest possible 
order. Certainly such an h exists; otherwise, G = (g) and we are done. Let 
Heh). 

We claim that (g) 7 H = {e}. It suffices to show that |H| = p. Since 
|h?| = |h|/p, the order of h? is smaller than the order of h and must be in 
(g) by the minimality of h; that is, h? = g" for some number r. Hence, 


(gr = (hp - pp = e, 


and the order of g” must be less than or equal to p™~!. Therefore, g” cannot 
generate (g). Notice that p must occur as a factor of r, say r = ps, and 
hP = g"’ = g?*. Define a to be g *h. Then a cannot be in (g); otherwise, h 
would also have to be in (g). Also, 


a=g PrP=g'hP=h Ph? =e. 


We have now formed an element a with order p such that a ¢ (g). Since h 
was chosen to have the smallest order of all of the elements that are not in 
(9), |H| =p. 

Now we will show that the order of gH in the factor group G/H must 
be the same as the order of g in G. If |gH| < |g| = p™, then 


H = (gH) = gH; 
hence, g?” ' must be in (g) OH = {e}, which contradicts the fact that the 
order of g is p™. Therefore, gH must have maximal order in G/H. By the 
Correspondence Theorem and our induction hypothesis, 


G/H & (gH) x K/H 


for some subgroup K of G containing H. We claim that (g) NK = {e}. If 
b € (g) NK, then bH € (gH) K/H = {H} and b € (g)N FA = {e}. It 
follows that G = (g)K implies that G = (g) x K. 


The proof of the Fundamental Theorem of Finite Abelian Groups follows 
very quickly from Lemma 13.4. Suppose that G is a finite abelian group and 
let g be an element of maximal order in G. If (g) = G, then we are done; 
otherwise, G = Z),, x H for some subgroup H contained in G by the lemma. 
Since |H| < |G|, we can apply mathematical induction. 
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We now state the more general theorem for all finitely generated abelian 
groups. The proof of this theorem can be found in any of the references at 
the end of this chapter. 


Theorem 13.5 (The Fundamental Theorem of Finitely Generated 
Abelian Groups) Every finitely generated abelian group G is isomorphic 
to a direct product of cyclic groups of the form 

Zio x Zyee X-++X Zyan XZ X--- x Z, 


where the p;’s are primes (not necessarily distinct). 


13.2 Solvable Groups 


A subnormal series of a group G is a finite sequence of subgroups 


Ge AyD Apa ot SAS Hp =e}, 


where H; is a normal subgroup of H;,1. If each subgroup H; is normal in G, 
then the series is called a normal series. The length of a subnormal or 
normal series is the number of proper inclusions. 


Example 4. Any series of subgroups of an abelian group is a normal series. 
Consider the following series of groups: 


Z > 9Z D 45Z Dd 180Z D {0}, 
Z24 D (2) D (6) D (12) D {0}. 


Example 5. A subnormal series need not be a normal series. Consider the 
following subnormal series of the group D4: 


Da > {(1), (12) (84), (18) (24), (14) (23)} > {(1), 12)(34)F > {()}- 


The subgroup {(1), (12)(34)} is not normal in D4; consequently, this series is 
not a normal series. | 


A subnormal (normal) series {Aj} is a refinement of a subnormal 
(normal) series {H;} if {Hi} C {Kj}. That is, each H; is one of the Kj. 


Example 6. The series 


Z > 3Z > 9Z D 45Z Dd 9OZ D 180Z D {0} 
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is a refinement of the series 


ZD9Z D 45Z Dd 180Z D {0}. 


The correct way to study a subnormal or normal series of subgroups, 
{H;} of G, is actually to study the factor groups H;,1/H;. We say that two 
subnormal (normal) series {H;} and {Aj} of a group G are isomorphic if 
there is a one-to-one correspondence between the collections of factor groups 
{Hi+1/Hi} and {Kj 41/K;j}. 


Example 7. The two normal series 


Zo D (3) D (15) D {0} 
Zeo > (4) D (20) D {0} 


of the group Zgg are isomorphic since 


Zo/(3) = (20)/{O} = Zs 
(3)/(15) © (4) /(20) = Zs 
(15)/{O} = Zego/(4) = Za. 


A subnormal series {H;} of a group G is a composition series if all 
the factor groups are simple; that is, if none of the factor groups of the 
series contains a normal subgroup. A normal series {H;} of G is a principal 
series if all the factor groups are simple. 


Example 8. The group Zgg has a composition series 


Zeo > (3) D (15) D (30) D {0} 


with factor groups 


IIe 


Zeo/(3) = Zz 
(3)/(15) = Zs 
(15)/(30) = Zo 
(30)/{O} = Zo. 
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Since Zgo is an abelian group, this series is automatically a principal series. 
Notice that a composition series need not be unique. The series 


Zeo D (2) D (4) D (20) > {0} 


is also a composition series. | 


Example 9. For n > 5, the series 
Ay Gy 


is a composition series for S;, since S,,/A, = Zz and Ay, is simple. | 


Example 10. Not every group has a composition series or a principal series. 
Suppose that 


is a subnormal series for the integers under addition. Then H, must be of 
the form nZ for some n € N. In this case Hi /Ho = nZ is an infinite cyclic 
group with many nontrivial proper normal subgroups. | 


Although composition series need not be unique as in the case of Zegpo, it 
turns out that any two composition series are related. The factor groups of 
the two composition series for Zo are Z2, Zo, Z3, and Zs; that is, the two 
composition series are isomorphic. The Jordan-H6élder Theorem says that 
this is always the case. 


Theorem 13.6 (Jordan-Hélder) Any two composition series of G are 
isomorphic. 


PROOF. We shall employ mathematical induction on the length of the 
composition series. If the length of a composition series is 1, then G must 
be a simple group. In this case any two composition series are isomorphic. 

Suppose now that the theorem is true for all groups having a composition 
series of length k, where 1 <k <n. Let 


G= Hy, D> Aya D>? Dh D> Ao = te} 
G= Ky KAD KES Ko = fe} 


208 CHAPTER 13. THE STRUCTURE OF GROUPS 


be two composition series for G. We can form two new subnormal series for 
G since H; 1 K,—1 is normal in Hj; K»-1 and K;M Ay, is normal in 
Kj410 An-1: 


G= Hy Dp > Aya Nhe DS Bp Nea =e} 
G = Km D Km_-1 D Km_-19 Hn 1 D3 D> Koi Ay = fe}. 


Since H;0 Ky,_1 is normal in Hj440Ky»,_1, the Second Isomorphism Theorem 
(Theorem 11.4) implies that 


(4 0) Kyi) / CE Kaa) = (Ga 9 Kt) / (EG) (Gs 1 Ks)) 
= AAAs 1 Key A)/ aa 
where H; is normal in H;(Hi+1 9 Km_1). Since {H;} is a composition 
series, H;+1/H; must be simple; consequently, H;(Hj419 Km-_—1)/H; is either 


Aji /H; or H;/H;. That is, H;(Hi419 Km_-1) must be either H; or Hj+1. 
Removing any nonproper inclusions from the series 


Hy—~1 D> Hp-1 1 Km—1 D +++ D Ho Km—1 = {el}, 


we have a composition series for Hy,-1. Our induction hypothesis says that 
this series must be equivalent to the composition series 


Ay, 1>D°::D HA, D Ho = {e}. 
Hence, the composition series 


G = Hy, > Hy D>: D> Ai D> Ao = {e} 


and 
G = Hy, D An-1 D An-1 9 Km-1 D+: D Ho Km_1 = {e} 


are equivalent. If H,-1 = Km-—i, then the composition series {H;} and {K;} 
are equivalent and we are done; otherwise, H,_1K,,_1 is a normal subgroup 
of G properly containing H,j-1. In this case Hyn-1Km-1 = G and we can 
apply the Second Isomorphism Theorem once again; that is, 


Km it (Kon vn” Ay, 1) = (Hy 1 Kit) ) My t = G/Hy-1. 


Therefore, 


G =H, > Agi > Aga Beet 3D DS Bo Nhe = te} 
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and 


G= Ky D Km 1D Km_-1N An poe DK yi =e} 


are equivalent and the proof of the theorem is complete. 


A group G is solvable if it has a composition series {H;} such that 
all of the factor groups Hj41/H; are abelian. Solvable groups will play a 
fundamental role when we study Galois theory and the solution of polynomial 
equations. 


Example 11. The group Sy¥ is solvable since 
Sa D Aa D {(1), (12)(34), (18) (24), (14) (23)} 3 (C1) 
has abelian factor groups; however, for n > 5 the series 
Sn > An D{()} 


is a composition series for S;, with a nonabelian factor group. Therefore, S;, 
is not a solvable group for n > 5. | 


Exercises 


1. Find all of the abelian groups of order less than or equal to 40 up to isomor- 
phism. 


2. Find all of the abelian groups of order 200 up to isomorphism. 
3. Find all of the abelian groups of order 720 up to isomorphism. 


4. Find all of the composition series for each of the following groups. 


(a) Zaz (e) S3 x Z4 
(b) Zag (f) Sa 

(c) The quaternions, Qs (g) Sn, n>5 
(d) Da (h) Q 


5. Show that the infinite direct product G = Zz x Z. x --- is not finitely 
generated. 


6. Let G be an abelian group of order m. If n divides m, prove that G has a 
subgroup of order n. 
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12. 


13. 


14. 
15. 


16. 
17. 


18. 


19. 


20. 
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. A group G is a torston group if every element of G has finite order. Prove 


that a finitely generated abelian torsion group must be finite. 


. Let G, H, and K be finitely generated abelian groups. Show that if Gx H = 


Gx K, then H = K. Give a counterexample to show that this cannot be 
true in general. 


. Let G and H be solvable groups. Show that G x H is also solvable. 
10. 


If G has a composition (principal) series and if N is a proper normal subgroup 
of G, show there exists a composition (principal) series containing N. 


. Prove or disprove: Let N be a normal subgroup of G. If N and G/N have 


composition series, then G must also have a composition series. 


Let N be a normal subgroup of G. If N and G/N are solvable groups, show 
that G is also a solvable group. 


Prove that G is a solvable group if and only if G has a series of subgroups 


G=P, > Pa-1 D+: D Pi D Po = {e} 


where P; is normal in P;;; and the order of P;41/P; is prime. 
Let G be a solvable group. Prove that any subgroup of G is also solvable. 


Let G be a solvable group and N a normal subgroup of G. Prove that G/N 
is solvable. 


Prove that D,, is solvable for all integers n. 


Suppose that G has a composition series. If N is a normal subgroup of G, 
show that N and G/N also have composition series. 


Let G be a cyclic p-group with subgroups H and K. Prove that either H is 
contained in K or Kk is contained in H. 


Suppose that G is a solvable group with order n > 2. Show that G contains 
a normal nontrivial abelian subgroup. 


Recall that the commutator subgroup G’ of a group G is defined as 
the subgroup of G generated by elements of the form a~'b~!ab for a,b € G. 
We can define a series of subgroups of G by GO = G, G® = G’, and 
GYD = (GM). 


(a) Prove that GC+) is normal in (G)’. The series of subgroups 
GO=AnGM 5G) d... 


is called the derived series of G. 
(b) Show that G is solvable if and only if G(™ = {e} for some integer n. 
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21. Suppose that G is a solvable group with order n > 2. Show that G contains 
a normal nontrivial abelian factor group. 


22. Zassenhaus Lemma. Let H and K be subgroups of a group G. Suppose 
also that H* and K* are normal subgroups of H and K respectively. Then 


(a) H*(H1 K*) is a normal subgroup of H*(HN K). 
(b) K*(H* 1 K) is a normal subgroup of K*(HN K). 


(c) H*(HOK)/H*(HNK*)& K*(HNK)/K*(H* OK) 
~ (HN K)/(H* 0 K)(H0 K*). 


[Hint: Use the diagram in Figure 13.1. The Zassenhaus Lemma is often 
referred to as the Butterfly Lemma because of this diagram.] 


vel Kk 


/ ANK 


(H* 1. K)(H0 K*) 


H* 


Bak HO K* 


Figure 13.1. The Zassenhaus Lemma 


23. Schreier’s Theorem. Use the Zassenhaus Lemma to prove that two sub- 
normal (normal) series of a group G have isomorphic refinements. 


24. Use Schreier’s Theorem to prove the Jordan-Holder Theorem. 
Programming Exercises 


Write a program that will compute all possible abelian groups of order n. What is 
the largest n for which your program will work? 
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Sage Sage is able to create direct products of cyclic groups, though they 
are realized as permutation groups. This is a situation that should improve. 
However, with a classification of finite abelian groups, we can describe how 
to construct in Sage every group of order less than 16. 


14 


Group Actions 


Group actions generalize group multiplication. If G is a group and X is an 
arbitrary set, a group action of an element g € G and x € X is a product, 
gx, living in X. Many problems in algebra may best be attacked via group 
actions. For example, the proofs of the Sylow theorems and of Burnside’s 
Counting Theorem are most easily understood when they are formulated in 
terms of group actions. 


14.1 Groups Acting on Sets 


Let X be a set and G be a group. A (left) action of G on X is a map 
Gx X > X given by (g, x) ++ gx, where 


1. ex =a forallxe X; 
2. (gig2)x = gi(gex) for all x € X and all gi, g2 EG. 


Under these considerations X is called a G-set. Notice that we are not 
requiring X to be related to G in any way. It is true that every group G 
acts on every set X by the trivial action (g,x) ++ x; however, group actions 
are more interesting if the set X is somehow related to the group G. 


Example 1. Let G = GL2(R) and X = R’. Then G acts on X by left 
multiplication. If v € R? and J is the identity matrix, then Iv = v. If 
A and B are 2 x 2 invertible matrices, then (AB)v = A(Bv) since matrix 
multiplication is associative. | 


Example 2. Let G = Dy, be the symmetry group of a square. If X = 
{1, 2,3,4} is the set of vertices of the square, then we can consider D, to 
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consist of the following permutations: 
{(1), (13), (24), (1432), (1234), (12) (34), (14) (23), (13)(24)}. 


The elements of D4 act on X as functions. The permutation (13)(24) acts 
on vertex 1 by sending it to vertex 3, on vertex 2 by sending it to vertex 4, 
and so on. It is easy to see that the axioms of a group action are satisfied. 

| 


In general, if X is any set and G is a subgroup of Sx, the group of all 
permutations acting on X, then X is a G-set under the group action 
(0,2) + (2) 


forgo €Gandxe X. 


Example 3. If we let X = G, then every group G acts on itself by the 
left regular representation; that is, (g,x) +> A(x) = ga, where X, is left 
multiplication: 


e-x=rAL=eL =x 
(gh) =a = Apne = Agana = Agha) = 9g (h~z). 


If H is a subgroup of G, then G is an H-set under left multiplication by 
elements of H. | 


Example 4. Let G be a group and suppose that X = G. If H is a subgroup 
of G, then G is an H-set under conjugation; that is, we can define an action 
of H on G, 
HxG—oG, 

via 

(h,g) > hgh 
for h € H and g € G. Clearly, the first axiom for a group action holds. 
Observing that 


(hiha, g) = hihog(hihe)' 
= hy(haghy*)hy" 
ae (hi, (he, 9)), 


we see that the second condition is also satisfied. |_| 
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Example 5. Let H be a subgroup of G and Ly the set of left cosets of H. 
The set £y is a G-set under the action 


(9, cH) +> gxH. 


Again, it is easy to see that the first axiom is true. Since (ggq’)«H = g(g'xH), 
the second axiom is also true. | 


If G acts on a set X and x,y € X, then z is said to be G-equivalent to 
y if there exists a g € G such that gx = y. We write x ~g y or x ~ y if two 
elements are G-equivalent. 


Proposition 14.1 Let X be a G-set. Then G-equivalence is an equivalence 
relation on X. 


ProoF. The relation ~ is reflexive since ex = x. Suppose that x ~ y for 
x,y € X. Then there exists a g such that gx = y. In this case g~!y = 2; 
hence, y ~ x. To show that the relation is transitive, suppose that x ~ y 
and y ~ z. Then there must exist group elements g and A such that gx = y 
and hy = z. So z = hy = (hg)z, and z is equivalent to z. 


If X is a G-set, then each partition of X associated with G-equivalence 
is called an orbit of X under G. We will denote the orbit that contains an 
element x of X by Oy. 


Example 6. Let G be the permutation group defined by 

G = {(1), (123), (182), (45), (123) (45), (132)(45)} 
and X = {1,2,3,4,5}. Then X is a G-set. The orbits are O; = O2 = O3 = 
{1,253} and: O71 =O; = {4,5}. a 


Now suppose that G is a group acting on a set X and let g be an element 
of G. The fixed point set of g in X, denoted by Xq, is the set of all x € X 
such that gx = x. We can also study the group elements g that fix a given 
x € X. This set is more than a subset of G, it is a subgroup. This subgroup 
is called the stabilizer subgroup or isotropy subgroup of x. We will 
denote the stabilizer subgroup of « by Gy. 


Remark. It is important to remember that X, C X and G; C G. 


Example 7. Let X = {1,2,3,4,5,6} and suppose that G is the permutation 
group given by the permutations 


{(1), (12) (3456), (35) (46), (12) (3654) }. 
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Then the fixed point sets of X under the action of G are 
X(1) —— X, 
X(35)(46) = {1,2}, 
X(12)(3456) = X(12)(3654) = 9, 
and the stabilizer subgroups are 
G1 = G2 = {(1), (35)(46)}, 
G3 = G4 = Gs = Ge = {(1)}. 


It is easily seen that Gz; is a subgroup of G for each x € X. | 


Proposition 14.2 Let G be a group acting on a set X andx € X. The 
stabilizer group, Gz, of x is a subgroup of G. 


PROOF. Clearly, e € Gz since the identity fixes every element in the set X. 
Let g,h € G,. Then gz = x and hx = z. So (gh)x = g(hx) = gx = z; hence, 
the product of two elements in G, is also in G,. Finally, if g € Gz, then 
xg = ex = (g-1g)x = (g"!)gx = g ‘x. So g! is in Ge. 

We will denote the number of elements in the fixed point set of an element 
g € G by |X,| and denote the number of elements in the orbit of « € X by 
|O,,|. The next theorem demonstrates the relationship between orbits of an 
element x € X and the left cosets of G, in G. 


Theorem 14.3 Let G be a finite group and X a finite G-set. Ifa € X, 
then, |O,|=|(G 2G: 


ProoF. We know that |G|/|G,| is the number of left cosets of G, in G by 
Lagrange’s Theorem (Theorem 6.5). We will define a bijective map ¢ between 
the orbit O, of X and the set of left cosets Le, of G,; in G. Let y € Oz. 
Then there exists a g in G such that gx = y. Define ¢ by ¢(y) = gGz. First 
we must show that this map is well-defined and does not depend on our 
selection of g. Suppose that A is another element in G such that hx = y. 
Then gx = hx or x = g~'ha; hence, g~h is in the stabilizer subgroup of x. 
Therefore, h € gGz or gG, = hG,. Thus, y gets mapped to the same coset 
regardless of the choice of the representative from that coset. 

To show that ¢ is one-to-one, assume that $(21) = ¢(x2). Then there 
exist g1,g2 € G such that 7; = g)x and rg = gox. Since there exists ag € Gy 
such that go = gig, 


TQ = Jot = QNgrt= Nt = 2; 
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consequently, the map ¢ is one-to-one. Finally, we must show that the map 
@ is onto. Let gG, be a left coset. If gx = y, then ¢(y) = gGz. 


14.2 The Class Equation 
Let X be a finite G-set and Xq be the set of fixed points in X; that is, 
Xqg={ceEX: gr = for all g € Gh. 


Since the orbits of the action partition X, 


n 
|X| =|Xel + 0 |Oz|, 
i=k 


where xz,...,2n are representatives from the distinct nontrivial orbits of X. 
Now consider the special case in which G acts on itself by conjugation, 
(g,z) ++ grg~'. The center of G, 


Z(G) = {x : 2g = gz for all g € G}, 


is the set of points that are fixed by conjugation. The nontrivial orbits 
of the action are called the conjugacy classes of G. If 71,...,a, are 
representatives from each of the nontrivial conjugacy classes of G and |Oz,| = 
M,.+.;|On,| = mp, then 


IG] = |2(G)| + a +--+ + nk. 


The stabilizer subgroups of each of the x;’s, C(z;) = {g © G: gui = zig}, 
are called the centralizer subgroups of the x;’s. From Theorem 14.3, we 
obtain the class equation: 


IG] = |2(G)| + [G : C(x1)] +--+ + [G = C(xg)}. 


One of the consequences of the class equation is that the order of each 
conjugacy class must divide the order of |G]. 


Example 8. It is easy to check that the conjugacy classes in $3 are the 
following: 


{(1)},  {(123), (182)}, {(12), (13), (23)}. 
The class equation is 6 = 1+2+3. a 
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Example 9. The conjugacy classes for D4 are 


{(1)}, (C13) (24) }, {(18), (24) }, (1432), (1234) }, {(12)(34), (14) (23)}- 


The class equation is 8 =1+1+2+24+42. | 


Example 10. For S), it takes a bit of work to find the conjugacy classes. We 
begin with cycles. Suppose that o = (a1,...,a,) is a cycle and let 7 € S),. 
By Theorem 6.10, 

tot | =(r(az),...,7(ag)). 


Consequently, any two cycles of the same length are conjugate. Now let 
0 = 0 09:--0, be a cycle decomposition, where the length of each cycle o; 
is r;. Then o is conjugate to every other 7 € S,, whose cycle decomposition 
has the same lengths. 

The number of conjugate classes in S;, is the number of ways in which 
n can be partitioned into sums of positive integers. For example, we can 
partition the integer 3 into the following three sums: 


3=1+1+1 
3=1+2 
3=3; 


therefore, there are three conjugacy classes. The problem of finding the 
number of such partitions for any positive integer n is what computer 
scientists call NP-complete. This effectively means that the problem cannot 
be solved for a large n because the computations would be too time-consuming 
for even the largest computer. | 


Theorem 14.4 Let G be a group of order p” where p is prime. Then G has 
a nontrivial center. 


PROOF. We apply the class equation 
|G] = |2(G)| + ma +--+ + ng. 


Since each n; > 1 and n; | G, p must divide each n;. Also, p | |G|; hence, 
p must divide |Z(G)|. Since the identity is always in the center of G, 
|Z(G)| > 1. Therefore, |Z(G)| > p and there exists some g € Z(G) such that 


gFl. 
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Corollary 14.5 Let G be a group of order p* where p is prime. Then G is 
abelian. 


Proor. By Theorem 14.4, |Z(G)| = p or p?. If |Z(G)| = p’, then we 
are done. Suppose that |Z(G)| = p. Then Z(G) and G/Z(G) both have 
order p and must both be cyclic groups. Choosing a generator aZ(G) for 
G/Z(G), we can write any element gZ(G) in the quotient group as a’ Z(G) 
for some integer m; hence, g = a’ x for some x in the center of G. Similarly, 
if hZ(G) € G/Z(G), there exists a y in Z(G) such that h = a”y for some 
integer n. Since x and y are in the center of G, they commute with all other 
elements of G; therefore, 


gh =a™za"y = a™ xy = a" ya™ x = hg, 


and G must be abelian. 


14.3. Burnside’s Counting Theorem 


Suppose that we are to color the vertices of a square with two different colors, 
say black and white. We might suspect that there would be 2+ = 16 different 
colorings. However, some of these colorings are equivalent. If we color the 
first vertex black and the remaining vertices white, it is the same as coloring 
the second vertex black and the remaining ones white since we could obtain 
the second coloring simply by rotating the square 90° (Figure 14.1). 


B WwW W B 
WwW WwW W W 
WwW Ww W W 
B WwW W B 


Figure 14.1. Equivalent colorings of square 
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Burnside’s Counting Theorem offers a method of computing the number 
of distinguishable ways in which something can be done. In addition to its 
geometric applications, the theorem has interesting applications to areas in 
switching theory and chemistry. The proof of Burnside’s Counting Theorem 
depends on the following lemma. 


Lemma 14.6 Let X be a G-set and suppose that x ~ y. Then Gy is 
isomorphic to Gy. In particular, |Gz| = |Gy|. 


Proor. Let G act on X by (g,2) 4 g- a. Since x ~ y, there exists ag EG 
such that g- x = y. Let a € Gz. Since 


gag -y=ga-g 'y=ga-r=g- x=y, 
we can define a map ¢: G, + G, by ¢(a) = gag™!. 
homomorphism since 


The map ¢ is a 


(ab) = gabg-* = gag‘ gbg”' = (a) (0). 
Suppose that ¢(a) = ¢(b). Then gag~' = gbg' or a = b; hence, the map is 
injective. To show that ¢ is onto, let b be in G,; then g~ ‘bg is in Gz since 


g bg-t=g''b-gr=g 'b-y=g + y=s; 


and $(g~!bg) = b. 


Theorem 14.7 (Burnside) Let G be a finite group acting on a set X and 
let k denote the number of orbits of X. Then 


1 
k= — XI. 


geG 


PROOF. We look at all the fixed points x of all the elements in g € G; that 
is, we look at all g’s and all x’s such that gx = x. If viewed in terms of fixed 
point sets, the number of all g’s fixing z’s is 


> IXal. 
geG 


However, if viewed in terms of the stabilizer subgroups, this number is 


S |Gal 


rex 
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hence, ))geq|Xgl = Virex |Ga|. By Lemma 14.6, 
> IGy| = |Oz| - |Gal. 
yEOr 


By Theorem 14.3 and Lagrange’s Theorem, this expression is equal to |G]. 
Summing over all of the k distinct orbits, we conclude that 


S7 1X41 = So Gel =k -IGI. 


gEG rex 


Example 11. Let X = {1,2,3,4,5} and suppose that G is the permutation 
group G = {(1), (13), (13)(25), (25)}. The orbits of X are {1,3}, {2,5}, and 
{4}. The fixed point sets are 


rae es 
X (13) = {2, 4, 5} 


X(13)(25) = {4} 
X25) = {1, 3, A}. 


Burnside’s Theorem says that 


1 1 
k= = So |X) = 7 +34+143) =3. 


A Geometric Example 


Before we apply Burnside’s Theorem to switching-theory problems, let us 
examine the number of ways in which the vertices of a square can be colored 
black or white. Notice that we can sometimes obtain equivalent colorings 
by simply applying a rigid motion to the square. For instance, as we have 
pointed out, if we color one of the vertices black and the remaining three 
white, it does not matter which vertex was colored black since a rotation 
will give an equivalent coloring. 

The symmetry group of a square, D4, is given by the following permuta- 
tions: 


i: Ga (24) (1432) 
(1234) (12)(34) (14)(23) (13)(24) 
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The group G acts on the set of vertices {1,2,3,4} in the usual manner. We 
can describe the different colorings by mappings from X into Y = {B,W} 
where B and W represent the colors black and white, respectively. Each map 
f :X — Y describes a way to color the corners of the square. Every 0 € D4 
induces a permutation o of the possible colorings given by o(f) = foo for 
f :X — Y. For example, suppose that f is defined by 


fY=B 
f2)=W 
f3)=W 
f4)=W 


and o = (12)(34). Then o(f) = foo sends vertex 2 to B and the remaining 
vertices to W. The set of all such o is a permutation group G on the set 
of possible colorings. Let X denote the set of all possible colorings; that is, 
X is the set of all possible maps from X to Y. Now we must compute the 
number of G-equivalence classes. 


1. Xa = X since the identity fixes every possible coloring. |X lig 
OF = 16: 


DX (1234) consists of all f € X such that f is unchanged by the permuta- 
tion (1234). In this case f(1) = f(2) = f(3) = f(A), so that all values 
of f must be the same; that is, either f(«) = B or f(x) = W for every 
vertex x of the square. So |X(1234)| = 2. 


3. |X (1439)| = 2. 

4. For X3yoa), f(1) = f(8) and f(2) = f(4). Thus, |X13)o4)| = 2? = 4. 
5. X12) 34)| = 4. 

6. Xia) 23)| = 4. 


7. For X 13); f(1) = f(3) and the other corners can be of any color; hence, 
X (13) = 98 = 8. 


8. X (oa) ="85 


By Burnside’s Theorem, we can conclude that there are exactly 


ways to color the vertices of the square. 
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Proposition 14.8 Let G be a permutation group of X and x the set of 
functions from X to Y. Then there exists a permutation group G acting 
on X, where & € G is defined by o(f) = foo foro e Gandf € X. 
Furthermore, if n is the number of cycles in the cycle decomposition of 0, 
then. |X| =|¥ |". 


Proor. Let o € G and f € x Clearly, f oo is also in x Suppose that g is 
another function from X to Y such that o(f) =a(g). Then for each x € X, 


flo(@)) = o(f)(@) = o(9)(@) = g(o(2)). 


Since o is a permutation of X, every element x’ in X is the image of some x 
in X under o; hence, f and g agree on all elements of X. Therefore, f = g 
and @ is injective. The map o +> is onto, since the two sets are the same 
size. 

Suppose that o is a permutation of X with cycle decomposition o = 
0102°''On. Any f in ne must have the same value on each cycle of o. 
Since there are n cycles and |Y| possible values for each cycle, |X,| = |Y|”. 


Example 12. Let X = {1,2,...,7} and suppose that Y = {A, B,C}. If g 
is the permutation of X given by (13)(245) = (13)(245)(6)(7), then n = 4. 
Any f € F, must have the same value on each cycle in g. There are |Y| = 3 
such choices for any value, so |F,| = 34 = 81. a 


Example 13. Suppose that we wish to color the vertices of a square using 
four different colors. By Proposition 14.8, we can immediately decide that 
there are 


1 
a 


possible ways. | 


Switching Functions 


In switching theory we are concerned with the design of electronic circuits 
with binary inputs and outputs. The simplest of these circuits is a switching 
function that has n inputs and a single output (Figure 14.2). Large electronic 
circuits can often be constructed by combining smaller modules of this kind. 
The inherent problem here is that even for a simple circuit a large number 
of different switching functions can be constructed. With only four inputs 
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«v1 — 


v2 — 
f IL—> f(@1,%2,..-,2n) 


Ln — 


Figure 14.2. A switching function of n variables 


and a single output, we can construct 65,536 different switching functions. 
However, we can often replace one switching function with another merely 
by permuting the input leads to the circuit (Figure 14.3). 


7 f t>fla,b ° f KK f(b,a) = g(a,b 
- (as) (5.4) = 9(a,b) 


Figure 14.3. A switching function of two variables 


We define a switching or Boolean function of n variables to be a 
function from ZF to Zy. Since any switching function can have two possible 
values for each binary n-tuple and there are 2” binary n-tuples, 2?” switching 
functions are possible for n variables. In general, allowing permutations of 
the inputs greatly reduces the number of different kinds of modules that are 
needed to build a large circuit. 

The possible switching functions with two input variables a and b are 
listed in Table 14.1. Two switching functions f and g are equivalent if g can 
be obtained from f by a permutation of the input variables. For example, 
g(a, b,c) = f(b,c,a). In this case g ~ f via the permutation (acb). In the 
case of switching functions of two variables, the permutation (ab) reduces 16 
possible switching functions to 12 equivalent functions since 


for fa 
Is ~ fs 
fio ~ fiz 
fu ~ fis: 


For three input variables there are 92° — 256 possible switching functions; 
in the case of four variables there are 22" = 65,536. The number of equivalence 
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Table 14.1. Switching functions in two variables 


Inputs Outputs 

to St: Jo fafa fs TT 
0 O 0 0 0 0 0 0 0 0 
0 1 0 0 0 0 1 1 1 1 
1 O 0 0 1 1 0 0 1 1 
1 1 0 1 0 1 0 1 0 1 
Inputs Outputs 

fs fo fio fi fie fis fia fis 
0 O 1 1 1 1 1 1 1 1 
0 1 0 0 0 0 1 1 1 1 
1 0 0 0 1 1 0 0 1 1 
1 1 0 1 0 1 0 1 0 1 


classes is too large to reasonably calculate directly. It is necessary to employ 


Burnside’s Theorem. 


Consider a switching function with three possible inputs, a, b, and c. 
As we have mentioned, two switching functions f and g are equivalent if a 
permutation of the input variables of f gives g. It is important to notice that 
a permutation of the switching functions is not simply a permutation of the 
input values {a,b,c}. A switching function is a set of output values for the 
inputs a, b, and c, so when we consider equivalent switching functions, we 
are permuting 2° possible outputs, not just three input values. For example, 
each binary triple (a,b,c) has a specific output associated with it. The 


permutation (acb) changes outputs as follows: 
(0,0, 0) ++ (0,0, 0) 


(0,0, 1) + (0, 1,0) 
(0, 1,0) + (1,0, 0) 
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Let X be the set of output values for a switching function in n variables. 
Then |X| = 2”. We can enumerate these values as follows: 
(0,...,0,1) 40 
(O,...¢1,0)es1 
(G...giipe 


Gc. 1, So" 


Now let us consider a circuit with four input variables and a single output. 
Suppose that we can permute the leads of any circuit according to the 
following permutation group: 


(a) (ac) (bd) (adcb) 
(abcd) (ab)(cd) (ad)(bc) (ac)(bd). 
The permutations of the four possible input variables induce the permutations 


of the output values in Table 14.2. 
Hence, there are 


1 
gl28 + 2-2 +2-2° + 3-2") = 9616 


possible switching functions of four variables under this group of permutations. 
This number will be even smaller if we consider the full symmetric group on 
four letters. 


Table 14.2. Permutations of switching functions in four variables 


Group Number 
Permutation | Switching Function Permutation of Cycles 
(a) 0) 16 

(ac) 2,8)(3, 9)(6, 12)(7, 13) 12 

(bd) 1, 4)(3, 6)(9, 12)(11, 14) 12 

(adcb) 1, 2,4, 8)(3, 6.12, 9)(5, 10)(7, 14,13,11) | 6 

(abcd) 1,8, 4, 2)(3, 9, 12,6)(5, 10)(7, 11, 13,14) | 6 

(ab) (cd) 1, 2)(4, 8)(5, 10) (6, 9)(7, 11) (13, 14) 10 

(ad) (bc) 1, 8)(2, 4)(3, 12)(5, 10)(7, 14) (11, 13) 10 

(ac) (bd) 1, 4)(2, 8)(3, 12) (6, 9)(7, 13) (11, 14) 10 


Historical Note 
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William Burnside was born in London in 1852. He attended Cambridge University 
from 1871 to 1875 and won the Smith’s Prize in his last year. After his graduation 
he lectured at Cambridge. He was made a member of the Royal Society in 1893. 
Burnside wrote approximately 150 papers on topics in applied mathematics, differ- 
ential geometry, and probability, but his most famous contributions were in group 
theory. Several of Burnside’s conjectures have stimulated research to this day. One 
such conjecture was that every group of odd order is solvable; that is, for a group G 
of odd order, there exists a sequence of subgroups 


G =H, D Hy_-1 D-:- D Hi D Hy = {e} 


such that H; is normal in Hj, and H;,1/H; is abelian. This conjecture was finally 
proven by W. Feit and J. Thompson in 1963. Burnside’s The Theory of Groups 
of Finite Order, published in 1897, was one of the first books to treat groups in a 
modern context as opposed to permutation groups. The second edition, published 
in 1911, is still a classic. [____] 


Exercises 


1. Examples 1-5 in the first section each describe an action of a group G on a set 
X, which will give rise to the equivalence relation defined by G-equivalence. 
For each example, compute the equivalence classes of the equivalence relation, 
the G-equivalence classes. 


2. Compute all X, and all G, for each of the following permutation groups. 
(a) X = {1,2,3}, 
(b) X = {1,2,3,4,5, 6}, 
G = {(1), (12), (345), (354), (12) (345), (12)(354)} 


3. Compute the G-equivalence classes of X for each of the G-sets in Exercise 2. 
For each x € X verify that |G] = |O,| -|Gz|. 


4. Let G be the additive group of real numbers. Let the action of 6 € G on 
the real plane R? be given by rotating the plane counterclockwise about the 
origin through @ radians. Let P be a point on the plane other than the origin. 


(a) Show that R? is a G-set. 
(b) Describe geometrically the orbit containing P. 
(c) Find the group Gp. 


5. Let G = Ay and suppose that G acts on itself by conjugation; that is, 
(g,h) + ghg™'. 


(a) Determine the conjugacy classes (orbits) of each element of G. 
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(b) Determine all of the isotropy subgroups for each element of G. 


Find the conjugacy classes and the class equation for each of the following 
groups. 


(a) Sa (c) Zo 
(b) Ds (d) Qs 


Write the class equation for Ss; and for As. 


If a square remains fixed in the plane, how many different ways can the corners 
of the square be colored if three colors are used? 


How many ways can the vertices of an equilateral triangle be colored using 
three different colors? 


Find the number of ways a six-sided die can be constructed if each side is 
marked differently with 1,...,6 dots. 


Up to a rotation, how many ways can the faces of a cube be colored with 
three different colors? 


Consider 12 straight wires of equal lengths with their ends soldered together 
to form the edges of a cube. Either silver or copper wire can be used for each 
edge. How many different ways can the cube be constructed? 


Suppose that we color each of the eight corners of a cube. Using three different 
colors, how many ways can the corners be colored up to a rotation of the 
cube? 


Each of the faces of a regular tetrahedron can be painted either red or white. 
Up to a rotation, how many different ways can the tetrahedron be painted? 


Suppose that the vertices of a regular hexagon are to be colored either red or 
white. How many ways can this be done up to a symmetry of the hexagon? 


A molecule of benzene is made up of six carbon atoms and six hydrogen 
atoms, linked together in a hexagonal shape as in Figure 14.4. 


(a) How many different compounds can be formed by replacing one or more 
of the hydrogen atoms with a chlorine atom? 


(b) Find the number of different chemical compounds that can be formed 
by replacing three of the six hydrogen atoms in a benzene ring with a 
C'H3 radical. 


How many equivalence classes of switching functions are there if the input 
variables x71, £2, and x3 can be permuted by any permutation in S3? What if 
the input variables 71, x2, 73, and 24 can be permuted by any permutation 
in S4? 
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Figure 14.4. A benzene ring 


How many equivalence classes of switching functions are there if the input 
variables x1, 22, 3, and x4 can be permuted by any permutation in the 
subgroup of S4 generated by the permutation (71224344)? 


A striped necktie has 12 bands of color. Each band can be colored by one of 
four possible colors. How many possible different-colored neckties are there? 


A group acts faithfully on a G-set X if the identity is the only element of 
G that leaves every element of X fixed. Show that G acts faithfully on X 
if and only if no two distinct elements of G have the same action on each 
element of X. 


Let p be prime. Show that the number of different abelian groups of order p” 
(up to isomorphism) is the same as the number of conjugacy classes in Sj. 


Let a € G. Show that for any g € G, gC(a)g~! = C(gag~*). 


Let |G| = p” and suppose that |Z(G)| = p"~' for p prime. Prove that G is 
abelian. 


Let G be a group with order p” where p is prime and X a finite G-set. If 
Xg={x eX: gr =x for all g € G} is the set of elements in X fixed by the 
group action, then prove that |X| =|Xc| (mod p). 


If G is a group of order p”, where p is prime and n > 2, show that G must 
have a proper subgroup of order p. If n > 3, is it true that G will have a 
proper subgroup of order p?? 


Programming Exercise 


Write a program to compute the number of conjugacy classes in S,,. What is the 


largest n for which your program will work? 
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The Sylow Theorems 


We already know that the converse of Lagrange’s Theorem is false. If 
G is a group of order m and n divides m, then G does not necessarily 
possess a subgroup of order n. For example, A, has order 12 but does not 
possess a subgroup of order 6. However, the Sylow Theorems do provide a 
partial converse for Lagrange’s Theorem: in certain cases they guarantee us 
subgroups of specific orders. These theorems yield a powerful set of tools for 
the classification of all finite nonabelian groups. 


15.1 The Sylow Theorems 


We will use the idea of group actions to prove the Sylow Theorems. Recall 
for a moment what it means for G to act on itself by conjugation and how 
conjugacy classes are distributed in the group according to the class equation, 
discussed in Chapter 14. A group G acts on itself by conjugation via the map 
(g,2) > gag-'. Let 21,..., 2, be representatives from each of the distinct 
conjugacy classes of G that consist of more than one element. Then the class 
equation can be written as 


IG] = |2(G)| + 1G: Ca] +--+ 1G: Clan), 


where Z(G) = {g € G: gx = aq for all x € G} is the center of G and 
C(a;) = {g € G: gx; = xg} is the centralizer subgroup of 2;. 

We now begin our investigation of the Sylow Theorems by examining 
subgroups of order p, where p is prime. A group G is a p-group if every 
element in G has as its order a power of p, where p is a prime number. A 
subgroup of a group G is a p-subgroup if it is a p-group. 


Theorem 15.1 (Cauchy) Let G be a finite group and p a prime such that 
p divides the order of G. Then G contains a subgroup of order p. 
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PROOF. We will use induction on the order of G. If |G| = p, then clearly G 
must have an element of order p. Now assume that every group of order k, 
where p< k <n and p divides k, has an element of order p. Assume that 
|G| = n and p|n and consider the class equation of G: 


IG] = |2(G)| + [G: Cai) +---+1G: C(ae)]. 


We have two cases. 

Case 1. The order of one of the centralizer subgroups, C(x;), is divisible 
by p for some i,i=1,...,k. In this case, by our induction hypothesis, we 
are done. Since C(x;) is a proper subgroup of G and p divides |C(x;)|, C(x;) 
must contain an element of order p. Hence, G must contain an element of 
order p. 

Case 2. The order of no centralizer subgroup is divisible by p. Then p 
divides [G : C(a;)], the order of each conjugacy class in the class equation; 
hence, p must divide the center of G, Z(G). Since Z(G) is abelian, it must 
have a subgroup of order p by the Fundamental Theorem of Finite Abelian 
Groups. Therefore, the center of G contains an element of order p. 


Corollary 15.2 Let G be a finite group. Then G is a p-group if and only if 
|G| =p". 


Example 1. Let us consider the group As. We know that |As| = 60 = 2?-3-5. 
By Cauchy’s Theorem, we are guaranteed that As has subgroups of orders 
2,3 and 5. The Sylow Theorems give us even more information about the 
possible subgroups of As. | 


We are now ready to state and prove the first of the Sylow Theorems. 
The proof is very similar to the proof of Cauchy’s Theorem. 


Theorem 15.3 (First Sylow Theorem) Let G be a finite group and p a 
prime such that p" divides |G|. Then G contains a subgroup of order p’. 


PROOF. We induct on the order of G once again. If |G| = p, then we are 
done. Now suppose that the order of G is n with n > p and that the theorem 
is true for all groups of order less than n. We shall apply the class equation 
once again: 


IG] =|Z(G)| + [G4 : C(#1)] +--+» + [G : Cla). 


First suppose that p does not divide [G : C(a;)] for some i. Then 
p’ | |C(ai)|, since p” divides |G| = |C(ax;)|-[G : C(a;)]. Now we can apply 
the induction hypothesis to C(x;). 
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Hence, we may assume that p divides [G : C(2;)] for all 7. Since p divides 
|G|, the class equation says that p must divide |Z(G)|; hence, by Cauchy’s 
Theorem, Z(G) has an element of order p, say g. Let N be the group 
generated by g. Clearly, N is a normal subgroup of Z(G) since Z(G) is 
abelian; therefore, N is normal in G' since every element in Z(G) commutes 
with every element in G. Now consider the factor group G/N of order |G|/p. 
By the induction hypothesis, G/N contains a subgroup H of order p’~'. The 
inverse image of H under the canonical homomorphism ¢: G— G/N isa 


subgroup of order p” in G. 


A Sylow p-subgroup P of a group G is a maximal p-subgroup of G. 
To prove the other two Sylow Theorems, we need to consider conjugate 
subgroups as opposed to conjugate elements in a group. For a group G, let 
S be the collection of all subgroups of G. For any subgroup H, S is a H-set, 
where H acts on S by conjugation. That is, we have an action 


HxSAS 
defined by 
h-KwHhKh 
for kK in S. 
The set 


N(H) = {9 €G: gHg* = H} 


is a subgroup of G. Notice that H is a normal subgroup of N(H). In fact, 
N(/1) is the largest subgroup of G in which H is normal. We call N(#) the 
normalizer of H in G. 


Lemma 15.4 Let P be a Sylow p-subgroup of a finite group G and let x 
have as its order a power of p. If <~'!Px = P, then x € P. 


PROOF. Certainly x € N(P), and the cyclic subgroup, (xP) C N(P)/P, 
has as its order a power of p. By the Correspondence Theorem there exists 
a subgroup H of N(P) such that H/P = (xP). Since |H| = |P|- |(xP)|, 
the order of H must be a power of p. However, P is a Sylow p-subgroup 
contained in H. Since the order of P is the largest power of p dividing |GI, 
H = P. Therefore, H/P is the trivial subgroup and xP = P, or x € P. 


Lemma 15.5 Let H and K be subgroups of G. The number of distinct 
H-conjugates of K is|H: N(K) H). 
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PROOF. We define a bijection between the conjugacy classes of K and the 
right cosets of N(K)NH by h-'Kh# (N(K)NH)h. To show that this map 
is a bijection, let hi, hg € H and suppose that (N(AK)NHA)hi = (N(K)OA )jho. 
Then hghy' € N(K). Therefore, K = hgh>'Khihy' or hy! Khi = hy' Kho, 
and the map is an injection. It is easy to see that this map is surjective; 
hence, we have a one-to-one and onto map between the H-conjugates of K 
and the right cosets of N(A) NH in H. 


Theorem 15.6 (Second Sylow Theorem) Let G be a finite group and p 
a prime dividing |G|. Then all Sylow p-subgroups of G are conjugate. That 
is, if P, and Py are two Sylow p-subgroups, there exists ag © G such that 
gPig * =P). 


Proor. Let P be a Sylow p-subgroup of G and suppose that |G| = p"m and 
|P| =p". Let 
Ped PeaPi, Pac. Pet 


consist of the distinct conjugates of P in G. By Lemma 15.5, k = |G: N(P)]. 
Notice that 


|G| = p"m = |N(P)|- [@: N(P)] = |N(P)|- 


Since p” divides |N(P)|, p cannot divide k. Given any other Sylow p-subgroup 
@, we must show that Q € P. Consider the Q-conjugacy classes of each 
P;. Clearly, these conjugacy classes partition P. The size of the partition 
containing P; is [Q : N(P;)N Q]. Lagrange’s Theorem tells us that this 
number is a divisor of |Q| = p". Hence, the number of conjugates in every 
equivalence class of the partition is a power of p. However, since p does not 
divide k, one of these equivalence classes must contain only a single Sylow 
p-subgroup, say P;. Therefore, for some P;, a4 Pix = P; for all x € Q. By 
Lemma 15.4, P; = Q. 


Theorem 15.7 (Third Sylow Theorem) Let G be a finite group and let 
p be a prime dividing the order of G. Then the number of Sylow p-subgroups 
is congruent to 1 (mod p) and divides |G|. 


ProoFr. Let P be a Sylow p-subgroup acting on the set of Sylow p-subgroups, 
Pat P =F ipPoveses Pele 


by conjugation. From the proof of the Second Sylow Theorem, the only 
P-conjugate of P is itself and the order of the other P-conjugacy classes is a 
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power of p. Each P-conjugacy class contributes a positive power of p toward 
|P| except the equivalence class {P}. Since |P| is the sum of positive powers 
of p and 1, |P| = 1 (mod p). 

Now suppose that G acts on P by conjugation. Since all Sylow p- 
subgroups are conjugate, there can be only one orbit under this action. For 
PEP, 

|P| = jorbit of P| = [G: N(P)]. 


But [G : N(P)] is a divisor of |G|; consequently, the number of Sylow 
p-subgroups of a finite group must divide the order of the group. 


Historical Note 


Peter Ludvig Mejdell Sylow was born in 1832 in Christiania, Norway (now Oslo). 
After attending Christiania University, Sylow taught high school. In 1862 he obtained 
a temporary appointment at Christiania University. Even though his appointment 


was relatively brief, he influenced students such as Sophus Lie (1842-1899). Sylow 
had a chance at a permanent chair in 1869, but failed to obtain the appointment. 
In 1872, he published a 10-page paper presenting the theorems that now bear his 
name. Later Lie and Sylow collaborated on a new edition of Abel’s works. In 1898, 
a chair at Christiania University was finally created for Sylow through the efforts of 


his student and colleague Lie. Sylow died in 1918. 


15.2 Examples and Applications 


Example 2. Using the Sylow Theorems, we can determine that A; has 
subgroups of orders 2, 3, 4, and 5. The Sylow p-subgroups of As have orders 
3, 4, and 5. The Third Sylow Theorem tells us exactly how many Sylow 
p-subgroups As has. Since the number of Sylow 5-subgroups must divide 
60 and also be congruent to 1 (mod 5), there are either one or six Sylow 
5-subgroups in As. All Sylow 5-subgroups are conjugate. If there were only 
a single Sylow 5-subgroup, it would be conjugate to itself; that is, it would 
be a normal subgroup of As. Since As has no normal subgroups, this is 
impossible; hence, we have determined that there are exactly six distinct 
Sylow 5-subgroups of As. | 


The Sylow Theorems allow us to prove many useful results about finite 
groups. By using them, we can often conclude a great deal about groups of 
a particular order if certain hypotheses are satisfied. 
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Theorem 15.8 If p and q are distinct primes with p < q, then every group 
G of order pq has a single subgroup of order q and this subgroup is normal 
in G. Hence, G cannot be simple. Furthermore, if q#1 (mod p), then G is 
cyclic. 


PROOF. We know that G contains a subgroup H of order gq. The number of 
conjugates of H divides pq and is equal to 1+ kq for k = 0,1,.... However, 
1+q is already too large to divide the order of the group; hence, H can only 
be conjugate to itself. That is, H must be normal in G. 

The group G also has a Sylow p-subgroup, say K. The number of 
conjugates of K must divide g and be equal to 1+ kp for k =0,1,.... Since 
q is prime, either 1+ kp = q or 1+kp=1. If 1+kp=1, then K is normal 
in G. In this case, we can easily show that G satisfies the criteria, given in 
Chapter 8, for the internal direct product of H and K. Since H is isomorphic 
to Z, and K is isomorphic to Z,, G = Zp x Z, = Zp, by Theorem 9.10. 


Example 3. Every group of order 15 is cyclic. This is true because 15 = 5-3 
and 5 #1 (mod 3). a 


Example 4. Let us classify all of the groups of order 99 = 37-11 up to 
isomorphism. First we will show that every group G of order 99 is abelian. 
By the Third Sylow Theorem, there are 1 + 3k Sylow 3-subgroups, each of 
order 9, for some k = 0,1,2,.... Also, 1 +3k must divide 11; hence, there 
can only be a single normal Sylow 3-subgroup H in G. Similarly, there are 
1+ 11k Sylow 11-subgroups and 1+ 11k must divide 9. Consequently, there 
is only one Sylow 11-subgroup K in G. By Corollary 14.5, any group of 
order p? is abelian for p prime; hence, H is isomorphic either to Z3 x Z3 
or to Zg. Since K has order 11, it must be isomorphic to Z1,;. Therefore, 
the only possible groups of order 99 are Z3 x Z3 x Zy1 or Zo X Zi, up to 
isomorphism. 2] 


To determine all of the groups of order 5- 7-47 = 1645, we need the 
following theorem. 


Theorem 15.9 Let G’ = (aba~'b-! : a,b € G) be the subgroup consisting 
of all finite products of elements of the form aba~'b~! in a group G. Then 
G’ is a normal subgroup of G and G/G' is abelian. 
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The subgroup G’ of G is called the commutator subgroup of G. We 
leave the proof of this theorem as an exercise. 


Example 5. We will now show that every group of order 5- 7-47 = 1645 
is abelian, and cyclic by Corollary 9.11. By the Third Sylow Theorem, G 
has only one subgroup H; of order 47. So G/Hj has order 35 and must be 
abelian by Theorem 15.8. Hence, the commutator subgroup of G is contained 
in H which tells us that |G’| is either 1 or 47. If |G’| = 1, we are done. 
Suppose that |G’| = 47. The Third Sylow Theorem tells us that G has 
only one subgroup of order 5 and one subgroup of order 7. So there exist 
normal subgroups Hz and H3 in G, where |H2| = 5 and |H3| = 7. In either 
case the quotient group is abelian; hence, G’ must be a subgroup of Hj, 
i = 1,2. Therefore, the order of G’ is 1, 5, or 7. However, we already have 
determined that |G’| = 1 or 47. So the commutator subgroup of G is trivial, 
and consequently G is abelian. | 


Finite Simple Groups 


Given a finite group, one can ask whether or not that group has any normal 
subgroups. Recall that a simple group is one with no proper nontrivial 
normal subgroups. As in the case of As, proving a group to be simple can 
be a very difficult task; however, the Sylow Theorems are useful tools for 
proving that a group is not simple. Usually some sort of counting argument 
is involved. 


Example 6. Let us show that no group G of order 20 can be simple. By 
the Third Sylow Theorem, G contains one or more Sylow 5-subgroups. The 
number of such subgroups is congruent to 1 (mod 5) and must also divide 
20. The only possible such number is 1. Since there is only a single Sylow 
5-subgroup and all Sylow 5-subgroups are conjugate, this subgroup must be 
normal. | 


Example 7. Let G be a finite group of order p”, n > 1 and p prime. By 
Theorem 14.4, G has a nontrivial center. Since the center of any group G is 
a normal subgroup, G cannot be a simple group. Therefore, groups of orders 
4, 8, 9, 16, 25, 27, 32, 49, 64, and 81 are not simple. In fact, the groups of 
order 4, 9, 25, and 49 are abelian by Corollary 14.5. | 


Example 8. No group of order 56 = 23-7 is simple. We have seen that 
if we can show that there is only one Sylow p-subgroup for some prime p 
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dividing 56, then this must be a normal subgroup and we are done. By the 
Third Sylow Theorem, there are either one or eight Sylow 7-subgroups. If 
there is only a single Sylow 7-subgroup, then it must be normal. 

On the other hand, suppose that there are eight Sylow 7-subgroups. Then 
each of these subgroups must be cyclic; hence, the intersection of any two of 
these subgroups contains only the identity of the group. This leaves 8-6 = 48 
distinct elements in the group, each of order 7. Now let us count Sylow 
2-subgroups. There are either one or seven Sylow 2-subgroups. Any element 
of a Sylow 2-subgroup other than the identity must have as its order a power 
of 2; and therefore cannot be one of the 48 elements of order 7 in the Sylow 
7-subgroups. Since a Sylow 2-subgroup has order 8, there is only enough 
room for a single Sylow 2-subgroup in a group of order 56. If there is only 
one Sylow 2-subgroup, it must be normal. | 


For other groups G it is more difficult to prove that G is not simple. 
Suppose G' has order 48. In this case the technique that we employed in the 
last example will not work. We need the following lemma to prove that no 
group of order 48 is simple. 


Lemma 15.10 Let H and K be finite subgroups of a group G. Then 


|H| - |K| 
Hk| = ———. 
| | IHN K| 
PROOF. Recall that 

AK ={hk: he H,ke K}. 


Certainly, |HK| < |H|-|K]| since some element in HK could be written 
as the product of different elements in H and K. It is quite possible that 
hyky = hokg for hi, ho € H and kj, ko € K. If this is the case, let 


a= (h1)~ the = ky(kg) 71. 


Notice that a € HK, since (h1)~th2 is in H and ko(ki)~! is in K; 
consequently, 

ho = hia! 

ko = aky. 


Conversely, let h = hib~! and k = bk, for b€ HO K. Then hk = hyky, 
where h € H andk € K. Hence, any element hk € HK can be written in 
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the form h;k; for h; © H and k; € K, as many times as there are elements 
in HO K; that is, |H mM K| times. Therefore, |HK| = (|H|-|K|)/|HN K|. 


Example 9. To demonstrate that a group G of order 48 is not simple, we 
will show that G contains either a normal subgroup of order 8 or a normal 
subgroup of order 16. By the Third Sylow Theorem, G has either one or 
three Sylow 2-subgroups of order 16. If there is only one subgroup, then it 
must be a normal subgroup. 

Suppose that the other case is true, and two of the three Sylow 2- 
subgroups are H and K. We claim that |H 7 K| =8. If |H K| < 4, then 
by Lemma 15.10, 

16-16 

i= 
which is impossible. Notice that H MK has index two in both of H and k, 
so is normal in both, and thus H and K are each in the normalizer of HN K. 
Because H is a subgroup of N(H 1M Kk) and because N(H 1 Kk) has strictly 
more than 16 elements, |V(H 1M K)| must be a multiple of 16 greater than 1, 
as well as dividing 48. The only possibility is that |N(HM K)| = 48. Hence, 
N(HAOK)=G. 


|HK| = 64, 


The following famous conjecture of Burnside was proved in a long and 
difficult paper by Feit and Thompson [2]. 


Theorem 15.11 (Odd Order Theorem) Every finite simple group of 
nonprime order must be of even order. 


The proof of this theorem laid the groundwork for a program in the 1960s 
and 1970s that classified all finite simple groups. The success of this program 
is one of the outstanding achievements of modern mathematics. 


Exercises 


1. What are the orders of all Sylow p-subgroups where G has order 18, 24, 54, 
72, and 80? 


2. Find all the Sylow 3-subgroups of S4 and show that they are all conjugate. 
3. Show that every group of order 45 has a normal subgroup of order 9. 


4. Let H bea Sylow p-subgroup of G. Prove that H is the only Sylow p-subgroup 
of G contained in N(#). 
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22. 
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. Prove that no group of order 96 is simple. 
. Prove that no group of order 160 is simple. 


. If A is a normal subgroup of a finite group G and |H| = p* for some prime p, 


show that H is contained in every Sylow p-subgroup of G. 


. Let G be a group of order p?q?, where p and q are distinct primes such that 


q\p? — 1 and pjJq? — 1. Prove that G must be abelian. List three pairs of 
primes satisfying these conditions. 


. Show directly that a group of order 33 has only one Sylow 3-subgroup. 
10. 


Let H be a subgroup of a group G. Prove or disprove that the normalizer of 
H is normal in G. 


. Let G be a finite group divisible by a prime p. Prove that if there is only one 


Sylow p-subgroup in G, it must be a normal subgroup of G. 


Let G be a group of order p’, p prime. Prove that G contains a normal 
subgroup of order p’~!. 


Suppose that G is a finite group of order p"k, where k < p. Show that G 
must contain a normal subgroup. 


Let H be a subgroup of a finite group G. Prove that gN(H)g~' = N(gHg"') 
for any g € G. 


Prove that a group of order 108 must have a normal subgroup. 
Classify all the groups of order 175 up to isomorphism. 
Show that every group of order 255 is cyclic. 


Let G have order p}---p$" and suppose that G has n Sylow p-subgroups 
P,,...,P, where |P;| = p;‘. Prove that G is isomorphic to Py x +--+ xX Pr. 


Let P be a normal Sylow p-subgroup of G. Prove that every inner automor- 
phism of G fixes P. 


What is the smallest possible order of a group G such that G is nonabelian 
and |G| is odd? Can you find such a group? 


The Frattini Lemma. If H is a normal subgroup of a finite group G and 
P is a Sylow p-subgroup of H, for each g € G show that there is an h in H 
such that gPg~! = hPh~'. Also, show that if N is the normalizer of P, then 
G=HN. 


Show that if the order of G is p”q, where p and q are primes and p > q, then 
G contains a normal subgroup. 


Prove that the number of distinct conjugates of a subgroup H of a finite 
group G is [G: N(H)]. 


Prove that a Sylow 2-subgroup of S5 is isomorphic to D4. 
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25. Another Proof of the Sylow Theorems. 


(a) Suppose p is prime and p does not divide m. Show that 


k 
prem 
Dp : 
i( pt ) 
(b) Let S denote the set of all p* element subsets of G. Show that p does 
not divide |S]. 


(c) Define an action of G on S by left multiplication, aT = {at : t € T} for 
aéGandT €S. Prove that this is a group action. 


(d) Prove p}|Or| for some T € S. 


(e) Let {T1,..., 7} be an orbit such that pJ/u and H = {g€G:g9T, =T\}. 
Prove that H is a subgroup of G and show that |G| = u|H|. 


(f) Show that p* divides |H| and p* < |H]. 
(g) Show that |H| = |Or| < p*; conclude that therefore p* = |H]. 
26. Let G be a group. Prove that G’ = (aba~'b~! : a,b € G) is a normal subgroup 


of G and G/G’ is abelian. Find an example to show that {aba~'b~! : a,b € G} 
is not necessarily a group. 


A Project 
Order Number | Order Number | Order Number | Order Number 
1 ? 16 14 31 1 46 2 
2 ? 17 1 32 51 47 1 
3 ? 18 ? 33 1 48 52 
4 ze 19 ? 34 ? 49 ? 
5 ? 20 5 35 1 50 5 
6 ? 21 ? 36 14 51 ? 
7 ? 22 2 37 1 52 ? 
8 ? 23 1 38 ? 53 ? 
9 ? 24 ? 39 2 54 15 
10 ? 25 2 40 14 55 2 
11 ? 26 2 41 1 56 ? 
12 5 27 5 42 ? 57 2 
13 ? 28 ? 43 1 58 ? 
14 ? 29 1 44 4 59 1 
15 1 30 4 45 % 60 13 


Table 15.1. Numbers of distinct groups G, |G| < 60 
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The main objective of finite group theory is to classify all possible finite groups up 
to isomorphism. This problem is very difficult even if we try to classify the groups 
of order less than or equal to 60. However, we can break the problem down into 
several intermediate problems. 


1. Find all simple groups G ( |G| < 60). Do not use the Odd Order Theorem 
unless you are prepared to prove it. 


2. Find the number of distinct groups G, where the order of G is n for n = 
1,..., 60. 


3. Find the actual groups (up to isomorphism) for each n. 


This is a challenging project that requires a working knowledge of the group theory 
you have learned up to this point. Even if you do not complete it, it will teach you 
a great deal about finite groups. You can use Table 15.2 as a guide. 
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Sage Sage will compute a single Sylow p-subgroup for each prime divisor p 
of the order of the group. Then, with conjugacy, all of the Sylow p-subgroups 
can be enumerated. It is also possible to compute the normalizer of a 
subgroup. 


16 


Rings 


Up to this point we have studied sets with a single binary operation satisfying 
certain axioms, but often we are more interested in working with sets that 
have two binary operations. For example, one of the most natural algebraic 
structures to study is the integers with the operations of addition and 
multiplication. These operations are related to one another by the distributive 
property. If we consider a set with two such related binary operations 
satisfying certain axioms, we have an algebraic structure called a ring. Ina 
ring we add and multiply such elements as real numbers, complex numbers, 
matrices, and functions. 


16.1 Rings 


A nonempty set R is a ring if it has two closed binary operations, addition 
and multiplication, satisfying the following conditions. 


1.a+b=b+<a fora,bE R. 
2. (a+b) +c=a+(b+c) fora,b,cE R. 
3. There is an element 0 in R such that a+0=a for alla ec R. 


4. For every element a € R, there exists an element —a in R such that 
a+ (—a) = 0. 


5. (ab)c = a(bc) for a,b,c € R. 

6. For a,b,c € R, 
a(b+c) =ab+ac 
(a+ b)c = ac + be. 
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This last condition, the distributive axiom, relates the binary operations of 
addition and multiplication. Notice that the first four axioms simply require 
that a ring be an abelian group under addition, so we could also have defined 
a ring to be an abelian group (R,+) together with a second binary operation 
satisfying the fifth and sixth conditions given above. 

If there is an element 1 € R such that 1 #0 and la = al =a for each 
element a € R, we say that R is a ring with unity or identity. A ring 
R for which ab = ba for all a,b in R is called a commutative ring. A 
commutative ring R with identity is called an integral domain if, for every 
a,b € R such that ab = 0, either a = 0 or b= 0. A division ring is a 
ring R, with an identity, in which every nonzero element in R is a unit; 
that is, for each a € R with a ¥ 0, there exists a unique element a~! such 
that a~'a = aa~! = 1. A commutative division ring is called a field. The 
relationship among rings, integral domains, division rings, and fields is shown 
in Figure 16.1. 


Rings 
Commutative Rings with 
Rings Identity 
Integral Division 
Domains Rings 
Fields 


Figure 16.1. Types of rings 


Example 1. As we have mentioned previously, the integers form a ring. In 
fact, Z is an integral domain. Certainly if ab = 0 for two integers a and }, 
either a = 0 or b = 0. However, Z is not a field. There is no integer that is 
the multiplicative inverse of 2, since 1/2 is not an integer. The only integers 
with multiplicative inverses are 1 and —1. | 


Example 2. Under the ordinary operations of addition and multiplication, 
all of the familiar number systems are rings: the rationals, Q; the real 
numbers, R; and the complex numbers, C. Each of these rings is a field. Hi 
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Example 3. We can define the product of two elements a and b in Z, by ab 
(mod n). For instance, in Zj2, 5:7 =11 (mod 12). This product makes the 
abelian group Z,, into a ring. Certainly Z,, is a commutative ring; however, 
it may fail to be an integral domain. If we consider 3-4 = 0 (mod 12) in 
Z19, it is easy to see that a product of two nonzero elements in the ring can 
be equal to zero. | 


A nonzero element a in a ring R is called a zero divisor if there is a 
nonzero element b in R such that ab = 0. In the previous example, 3 and 4 
are zero divisors in Zy9. 


Example 4. In calculus the continuous real-valued functions on an interval 
[a,b] form a commutative ring. We add or multiply two functions by adding 
or multiplying the values of the functions. If f(a) = x? and g(2) = cosz, 
then (f +g)(x) = f(x) + g(x) = x*+cosz and (fg)(x) = f(x)g(x) = x? cosa. 

| 


Example 5. The 2 x 2 matrices with entries in R form a ring under 
the usual operations of matrix addition and multiplication. This ring is 
noncommutative, since it is usually the case that AB # BA. Also, notice 
that we can have AB = 0 when neither A nor B is zero. i 


Example 6. For an example of a noncommutative division ring, let 


TON, <0. OY. Oa _ fi 0 
fey ste.) et ge Be 4) 


where i? = —1. These elements satisfy the following relations: 
?P-P=-h=-1 
ij =k 
jk =i 
ki=j 
ji = —k 
kj = -i 
ik = —j 


Let H consist of elements of the form a+ bi-+ cj + dk, where a,b,c, d are 
real numbers. Equivalently, H can be considered to be the set of all 2 x 2 
matrices of the form 
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where a = a+ di and 6 = 6+ ci are complex numbers. We can define 
addition and multiplication on H either by the usual matrix operations or in 
terms of the generators 1, i, j, and k: 


(a1 + b1i + cij + dik) + (a2 + boi + c2j + dok) 
= (a1 + az) + (b1 + b2)i + (cr + €2)j + (di + da)k 


and 
(ay + byi + c1j + dyk) (ag + boi + coj + dgk) =a + 6i+ 7j + ok, 
where 
Q = a a2 — b1b2 — c1C9 — di do 
B = ayb2 + ayby + c1d2 — dca 


Y = aycg — bydg + cyazq — dbo 
6 = ajdyg + by cg — C1 bg — dyaz. 


Though multiplication looks complicated, it is actually a straightforward 
computation if we remember that we just add and multiply elements in H 
like polynomials and keep in mind the relationships between the generators 
i, j, and k. The ring H is called the ring of quaternions. 

To show that the quaternions are a division ring, we must be able to find 
an inverse for each nonzero element. Notice that 


(a+ bi+ cj + dk)(a — bi—- cj — dk) =a? +P 4+ C4. 


This element can be zero only if a, b, c, and d are all zero. So if a+bi+cj+dk # 
0, 


tn 
a+titd +a (4 Beg ja 


GPF bie ed? 


Proposition 16.1 Let R be a ring with a,b € R. Then 


16.1 RINGS 247 


PROOF. To prove (1), observe that 
a0 = a(0 + 0) = a0 4+ al; 


hence, a0 = 0. Similarly, 0a = 0. For (2), we have ab + a(—b) = a(b — b) = 
a0 = 0; consequently, —ab = a(—b). Similarly, —ab = (—a)b. Part (3) follows 
directly from (2) since (—a)(—b) = —(a(—b)) = —(—ab) = ab. 

Just as we have subgroups of groups, we have an analogous class of 
substructures for rings. A subring S of a ring R is a subset S of R such 
that S is also a ring under the inherited operations from R. 


Example 7. The ring nZ is a subring of Z. Notice that even though the 
original ring may have an identity, we do not require that its subring have 
an identity. We have the following chain of subrings: 


ZCQCRCC. 
Bi 


The following proposition gives us some easy criteria for determining 
whether or not a subset of a ring is indeed a subring. (We will leave the 
proof of this proposition as an exercise.) 


Proposition 16.2 Let R be a ring and S a subset of R. Then S is a subring 
of R if and only if the following conditions are satisfied. 


i SHU: 
2.rs€S forallr,seS. 


3. r—s€S forallr,se S. 


Example 8. Let R = Mo(R) be the ring of 2 x 2 matrices with entries in R. 
If T is the set of upper triangular matrices in R; i.e., 


ne ’) abceR}, 
0 c¢ 


then T is a subring of R. If 


A= é : and B= i ") 
are in T,, then clearly A — B is also in JT. Also, 
AB = ab! + es) 
0 cc 
isin T. | 
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16.2 Integral Domains and Fields 


Let us briefly recall some definitions. If R is a ring and r is a nonzero element 
in R, then r is said to be a zero divisor if there is some nonzero element 
s € R such that rs = 0. A commutative ring with identity is said to be 
an integral domain if it has no zero divisors. If an element a in a ring R 
with identity has a multiplicative inverse, we say that a is a unit. If every 
nonzero element in a ring FR is a unit, then R is called a division ring. A 
commutative division ring is called a field. 


Example 9. If i? = —1, then the set Z[i] = {m+ni: m,n € Z} forms a 
ring known as the Gaussian integers. It is easily seen that the Gaussian 
integers are a subring of the complex numbers since they are closed under 
addition and multiplication. Let a = a+ bi be a unit in Z[i]. Then @ = a—bi 
is also a unit since if a8 = 1, then @8 = 1. If 8 = c+ di, then 


1 = aBaB = (a? + b?)\(c* + d?). 


Therefore, a? + b? must either be 1 or —1; or, equivalently, a + bi = +1 or 
a+bi = +1. Therefore, units of this ring are +1 and +7; hence, the Gaussian 
integers are not a field. We will leave it as an exercise to prove that the 
Gaussian integers are an integral domain. | 


Example 10. The set of matrices 


r={(69)-G C6 9} 


with entries in Zp forms a field. | 


Example 11. The set Q(V2) = {a+ bV2: a,b € Q} is a field. The inverse 
of an element a + bv2 in Q(V2) is 


a —b V2 


Poe gh oe ; 


| 
We have the following alternative characterization of integral domains. 
Proposition 16.3 (Cancellation Law) Let D be a commutative ring with 


identity. Then D is an integral domain if and only if for all nonzero elements 
a€ D with ab= ac, we have b=c. 
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ProoF. Let D be an integral domain. Then D has no zero divisors. Let 
ab = ac with a #0. Then a(b — c) = 0. Hence, b— c= 0 and b=c. 
Conversely, let us suppose that cancellation is possible in D. That is, 
suppose that ab = ac implies b = c. Let ab = 0. If a £0, then ab = a0 or 
b = 0. Therefore, a cannot be a zero divisor. 


The following surprising theorem is due to Wedderburn. 
Theorem 16.4 Every finite integral domain is a field. 


ProoF. Let D be a finite integral domain and D* be the set of nonzero 
elements of D. We must show that every element in D* has an inverse. For 
each a € D* we can define a map Aq : D* + D* by Aq(d) = ad. This map 
makes sense, because if a 4 0 and d ¥ 0, then ad # 0. The map X,g is 
one-to-one, since for d,,d2 € D*, 


ad, = Aa(d1) = Aa(d2) = ady 


implies dj = dg by left cancellation. Since D* is a finite set, the map Ag 
must also be onto; hence, for some d € D*, A,(d) = ad = 1. Therefore, a has 
a left inverse. Since D is commutative, d must also be a right inverse for a. 
Consequently, D is a field. 


For any nonnegative integer n and any element r in a ring R we write 
r+---+r (n times) as nr. We define the characteristic of a ring R to be 
the least positive integer n such that nr = 0 for all r € R. If no such integer 
exists, then the characteristic of R is defined to be 0. 


Example 12. For every prime p, Z, is a field of characteristic p. By 
Proposition 3.1, every nonzero element in Zp has an inverse; hence, Zp is a 
field. If a is any nonzero element in the field, then pa = 0, since the order of 
any nonzero element in the abelian group Zp is p. a 


Lemma 16.5 Let R be a ring with identity. If 1 has order n, then the 
characteristic of R isn. 


ProoF. If 1 has order n, then n is the least positive integer such that n1 = 0. 
Thus, for all r € R, 


nani) = alr H Urs 0 


On the other hand, if no positive n exists such that nl = 0, then the 
characteristic of R is zero. 
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Theorem 16.6 The characteristic of an integral domain is either prime 
or zero. 


ProoF. Let D be an integral domain and suppose that the characteristic 
of D is n with n £0. If n is not prime, then n = ab, where 1 < a < n and 
1<b<n. By Lemma 16.5, we need only consider the case nl = 0. Since 
0 = nl = (ab)1 = (a1)(b1) and there are no zero divisors in D, either al = 0 
or b1 = 0. Hence, the characteristic of D must be less than n, which is a 
contradiction. Therefore, n must be prime. 


16.3. Ring Homomorphisms and Ideals 


In the study of groups, a homomorphism is a map that preserves the op- 
eration of the group. Similarly, a homomorphism between rings preserves 
the operations of addition and multiplication in the ring. More specifically, 
if R and S are rings, then a ring homomorphism is a map ¢: R> S 
satisfying 


for alla,b € R. If 6: R > S is a one-to-one and onto homomorphism, then 
¢ is called an tsomorphism of rings. 

The set of elements that a ring homomorphism maps to 0 plays a funda- 
mental role in the theory of rings. For any ring homomorphism ¢: R—- S, 
we define the kernel of a ring homomorphism to be the set 


kerd@= {re R: d(r) =O}. 


Example 13. For any integer n we can define a ring homomorphism 
@: Z>Z, by at+a (mod n). This is indeed a ring homomorphism, since 


o(a+b)=(a+b) (mod n) 
=a (modn)+b6 (mod n) 
= $(a) + o(0) 
and 
go(ab) =ab (mod n) 
=a (modn)-b (mod n) 
= 6(2)9(0). 
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The kernel of the homomorphism ¢ is nZ. | 


Example 14. Let C[a,b| be the ring of continuous real-valued functions 
on an interval [a,b] as in Example 4. For a fixed a € [a,b], we can define 
a ring homomorphism ¢, : Cla,b] > R by ¢a(f) = f(a). This is a ring 
homomorphism since 


balf +9) = (Ff +9)(a) = fla) + g(a) = galf) + ba(g) 
bal fg) = (f9)(@) = f(a)g(a) = bal f)ba(g). 


Ring homomorphisms of the type ¢q are called evaluation homomor- 
phisms. a 


In the next proposition we will examine some fundamental properties of 
ring homomorphisms. The proof of the proposition is left as an exercise. 


Proposition 16.7 Let ¢: R- S be a ring homomorphism. 


1. If R is a commutative ring, then ¢(R) is a commutative ring. 
2. (0) =0. 


3. Let 1p and 1g be the identities for R and S, respectively. If ¢ is onto, 
then o(1pr) = lg. 


4. If R is a field and ¢(R) £0, then o(R) is a field. 


In group theory we found that normal subgroups play a special role. 
These subgroups have nice characteristics that make them more interesting 
to study than arbitrary subgroups. In ring theory the objects corresponding 
to normal subgroups are a special class of subrings called ideals. An ideal 
in a ring R is a subring J of R such that if a is in J and r is in R, then both 
ar and ra are in J; that is, rJ C I and Ir CI for allr€ R. 


Example 15. Every ring R has at least two ideals, {0} and R. These ideals 
are called the trivial ideals. | 


Let R be a ring with identity and suppose that J is an ideal in R such 
that 1 is in J. Since for any r € R, rl =r € I by the definition of an ideal, 
I=R. 


Example 16. If a is any element in a commutative ring R with identity, 
then the set 
(a) = {ar:re R} 
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is an ideal in R. Certainly, (a) is nonempty since both 0 = a0 and a = al are 
in (a). The sum of two elements in (a) is again in (a) since ar+ar’ = a(r+r’). 
The inverse of ar is —ar = a(—r) € (a). Finally, if we multiply an element 
ar € (a) by an arbitrary element s € R, we have s(ar) = a(sr). Therefore, 
(a) satisfies the definition of an ideal. a 


If R is a commutative ring with identity, then an ideal of the form 
(a) = {ar:r € R} is called a principal ideal. 


Theorem 16.8 Every ideal in the ring of integers Z is a principal ideal. 


PROOF. The zero ideal {0} is a principal ideal since (0) = {0}. If I is any 
nonzero ideal in Z, then J must contain some positive integer m. There exists 
at least one such positive integer n in I by the Principle of Well-Ordering. 
Now let a be any element in J. Using the division algorithm, we know that 
there exist integers g and r such that 


a=nqt+r 


where 0 <r <n. This equation tells us that r= a— nq € I, but r must be 
0 since n is the least positive element in J. Therefore, a = ng and I = (n). 


Example 17. The set nZ is ideal in the ring of integers. If na is in nZ and 
b is in Z, then nab is in nZ as required. In fact, by Theorem 16.8, these are 
the only ideals of Z. | 


Proposition 16.9 The kernel of any ring homomorphism ¢: R > S' is an 
ideal in R. 


PROOF. We know from group theory that ker ¢ is an additive subgroup of 


R. Suppose that r € R and a € ker ¢. Then we must show that ar and ra 
are in ker ¢. However, 


and 


Remark. In our definition of an ideal we have required that rJ C J and 
Ir C I for all r € R. Such ideals are sometimes referred to as two-sided 
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ideals. We can also consider one-sided ideals; that is, we may require 
only that either rf C I or Ir C I for r € R hold but not both. Such 
ideals are called left ideals and right ideals, respectively. Of course, 
in a commutative ring any ideal must be two-sided. In this text we will 
concentrate on two-sided ideals. 


Theorem 16.10 Let I be an ideal of R. The factor group R/I is a ring 
with multiplication defined by 


(r+D(st+I)=rs+I. 


Proor. We already know that R/I is an abelian group under addition. Let 
r+I and s+I bein R/I. We must show that the product (r+J)(s+J) = rs+I 
is independent of the choice of coset; that is, ifr’ € r+J and s’es+TJ, 
then r’s’ must be in rs + J. Since r’ € r+, there exists an element a in 
I such that r’ = r +a. Similarly, there exists a b € I such that s’ = s +b. 
Notice that 

rs) =(r+a)(s+b)=rst+as+rb+ab 


and as +rb+ab€TI since J is an ideal; consequently, r’s’ € rs +I. We will 
leave as an exercise the verification of the associative law for multiplication 
and the distributive laws. 


The ring R/I in Theorem 16.10 is called the factor or quotient ring. 
Just as with group homomorphisms and normal subgroups, there is a rela- 
tionship between ring homomorphisms and ideals. 


Theorem 16.11 Let I be an ideal of R. The map: R—- R/I defined by 
W(r) =r+T is a ring homomorphism of R onto R/I with kernel I. 


PRooFr. Certainly ~ : R > R/T is a surjective abelian group homomorphism. 
It remains to show that w works correctly under ring multiplication. Let r 
and s be in R. Then 


v(r)v(s) = (r+1(s+D=rs+l=yi(rs), 


which completes the proof of the theorem. 


The map =: R— R/T is often called the natural or canonical homo- 
morphism. In ring theory we have isomorphism theorems relating ideals 
and ring homomorphisms similar to the isomorphism theorems for groups 
that relate normal subgroups and homomorphisms in Chapter 11. We will 
prove only the First Isomorphism Theorem for rings in this chapter and 
leave the proofs of the other two theorems as exercises. All of the proofs are 
similar to the proofs of the isomorphism theorems for groups. 
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Theorem 16.12 (First Isomorphism Theorem) Let ¢: R — S be a 
ring homomorphism. Then ker ¢ is an ideal of R. Ifw : R > R/ker@d 
is the canonical homomorphism, then there exists a unique isomorphism 
n: R/ker ¢ > (R) such that 6 = nw. 


Proor. Let K = kerd¢. By the First Isomorphism Theorem for groups, 
there exists a well-defined group homomorphism 7 : R/K — w(R) defined by 
n(r + K) = V(r) for the additive abelian groups R and R/K. To show that 
this is a ring homomorphism, we need only show that 7((r + K)(s+ K)) = 
n(r + K)n(s + K); but 


n((r+K)(s+K))=n(rs+ kK) 


Theorem 16.13 (Second Isomorphism Theorem) Let I be a subring 
of a ring R and J an ideal of R. Then IN J 1s an ideal of I and 


IJIN ITS (L+I/J. 


Theorem 16.14 (Third Isomorphism Theorem) Let R be a ring and 
I and J be ideals of R where J CI. Then 
R/J 
R/I = —. 
/ ES 

Theorem 16.15 (Correspondence Theorem) Let I be an ideal of a ring 
R. Then S — S/T is a one-to-one correspondence between the set of subrings 
S containing I and the set of subrings of R/I. Furthermore, the ideals of R 
containing I correspond to ideals of R/I. 


16.4 Maximal and Prime Ideals 


In this particular section we are especially interested in certain ideals of 
commutative rings. These ideals give us special types of factor rings. More 
specifically, we would like to characterize those ideals I of a commutative 
ring R such that R/J is an integral domain or a field. 
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A proper ideal M of a ring R is a maximal ideal of R if the ideal M 
is not a proper subset of any ideal of R except R itself. That is, M isa 
maximal ideal if for any ideal J properly containing M, I = R. The following 
theorem completely characterizes maximal ideals for commutative rings with 
identity in terms of their corresponding factor rings. 


Theorem 16.16 Let R be a commutative ring with identity and M an ideal 
in R. Then M is a maximal ideal of R if and only if R/M is a field. 


Proor. Let M be a maximal ideal in R. If R is a commutative ring, then 
R/M must also be a commutative ring. Clearly, 1 + M acts as an identity 
for R/M. We must also show that every nonzero element in R/M has an 
inverse. If a+ M is a nonzero element in R/M, then a ¢ M. Define I to be 
the set {ra+m:ré€ Rand me M}. We will show that J is an ideal in R. 
The set J is nonempty since 0a +0 = 0 is in J. If rya+ my, and rga+ mg are 
two elements in J, then 


(rja + m4) — (rea + m2) = (71 — r2)a + (my — m2) 


is in J. Also, for any r € RF it is true that rf C I; hence, I is closed under 
multiplication and satisfies the necessary conditions to be an ideal. Therefore, 
by Proposition 16.2 and the definition of an ideal, J is an ideal properly 
containing M. Since M is a maximal ideal, J = R; consequently, by the 
definition of J there must be an m in M and a b in R such that 1 = ab+m. 
Therefore, 


1+ M=ab+M=ba+M =(a+M)(b4+ M). 


Conversely, suppose that M is an ideal and R/M is a field. Since R/M 
is a field, it must contain at least two elements: 0+ M = M and1+M. 
Hence, M is a proper ideal of R. Let I be any ideal properly containing M. 
We need to show that J = R. Choose a in J but not in M. Sincea+M isa 
nonzero element in a field, there exists an element b+ M in R/M such that 
(a+ M)(b+ M) =ab+ M =1+4M. Consequently, there exists an element 
m € M such that ab +m = 1 and 1 is in J. Therefore, rl = r € J for all 
r € R. Consequently, J = R. 


Example 18. Let pZ be an ideal in Z, where p is prime. Then pZ is a 
maximal ideal since Z/pZ = Z, is a field. a 


An ideal P in a commutative ring R is called a prime ideal if whenever 
ab € P, then either a € Por be P. 


Example 19. It is easy to check that the set P = {0,2,4,6,8,10} is an 
ideal in Zj2. This ideal is prime. In fact, it is a maximal ideal. . 
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Proposition 16.17 Let R be a commutative ring with identity. Then P is 
a prime ideal in R if and only if R/P is an integral domain. 


PRooF. First let us assume that P is an ideal in R and R/P is an integral 
domain. Suppose that ab € P. If a+ P and b+ P are two elements of R/P 
such that (a+ P)(b+ P) =0+4+ P =P, then eithera+ P= Porb+P=P. 
This means that either a is in P or b is in P, which shows that P must be 
prime. 

Conversely, suppose that P is prime and 


(a+ P)(6+ P)=ab+P=04+P=P. 


Then ab € P. If a ¢ P, then b must be in P by the definition of a prime 
ideal; hence, b+ P =0+ P and R/P is an integral domain. 


Example 20. Every ideal in Z is of the form nZ. The factor ring Z/nZ = Z, 
is an integral domain only when n is prime. It is actually a field. Hence, the 
nonzero prime ideals in Z are the ideals pZ, where p is prime. This example 


really justifies the use of the word “prime” in our definition of prime ideals. 
| 


Since every field is an integral domain, we have the following corollary. 


Corollary 16.18 Every maximal ideal in a commutative ring with identity 
is also a prime ideal. 


Historical Note | 


Amalie Emmy Noether, one of the outstanding mathematicians of this century, 
was born in Erlangen, Germany in 1882. She was the daughter of Max Noether 
(1844-1921), a distinguished mathematician at the University of Erlangen. Together 
with Paul Gordon (1837-1912), Emmy Noether’s father strongly influenced her 
early education. She entered the University of Erlangen at the age of 18. Although 
women had been admitted to universities in England, France, and Italy for decades, 
there was great resistance to their presence at universities in Germany. Noether 
was one of only two women among the university’s 986 students. After completing 
her doctorate under Gordon in 1907, she continued to do research at Erlangen, 
occasionally lecturing when her father was ill. 

Noether went to Gottingen to study in 1916. David Hilbert and Felix Klein 
tried unsuccessfully to secure her an appointment at Gottingen. Some of the faculty 
objected to women lecturers, saying, “What will our soldiers think when they return 
to the university and are expected to learn at the feet of a woman?” Hilbert, annoyed 
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at the question, responded, “Meine Herren, I do not see that the sex of a candidate 
is an argument against her admission as a Privatdozent. After all, the Senate is not 
a bathhouse.” At the end of World War I, attitudes changed and conditions greatly 
improved for women. After Noether passed her habilitation examination in 1919, 
she was given a title and was paid a small sum for her lectures. 

In 1922, Noether became a Privatdozent at Gottingen. Over the next 11 years 
she used axiomatic methods to develop an abstract theory of rings and ideals. 
Though she was not good at lecturing, Noether was an inspiring teacher. One of her 
many students was B. L. van der Waerden, author of the first text treating abstract 
algebra from a modern point of view. Some of the other mathematicians Noether 
influenced or closely worked with were Alexandroff, Artin, Brauer, Courant, Hasse, 
Hopf, Pontryagin, von Neumann, and Weyl. One of the high points of her career 
was an invitation to address the International Congress of Mathematicians in Zurich 
in 1932. In spite of all the recognition she received from her colleagues, Noether’s 
abilities were never recognized as they should have been during her lifetime. She 
was never promoted to full professor by the Prussian academic bureaucracy. 

In 1933, Noether, a Jew, was banned from participation in all academic activities 
in Germany. She emigrated to the United States, took a position at Bryn Mawr 
College, and became a member of the Institute for Advanced Study at Princeton. 
Noether died suddenly on April 14, 1935. After her death she was eulogized by such 
notable scientists as Albert Einstein. 


16.5 An Application to Software Design 


The Chinese Remainder Theorem is a result from elementary number theory 
about the solution of systems of simultaneous congruences. The Chinese 
mathematician Sun-ts1 wrote about the theorem in the first century A.D. 
This theorem has some interesting consequences in the design of software for 
parallel processors. 


Lemma 16.19 Let m and n be positive integers such that gcd(m,n) = 1. 
Then for a,b € Z the system 


x=a (mod m) 
x=b (mod n) 


has a solution. If x, and x2 are two solutions of the system, then x1 = r2 
(mod mn). 


PrROooF. The equation x = a (mod m) has a solution since a + km satisfies 
the equation for all k € Z. We must show that there exists an integer k, 
such that 

a+kyn=b (mod n). 
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This is equivalent to showing that 
kjm = (b-—a) (mod n) 


has a solution for ky. Since m and n are relatively prime, there exist integers 
s and t such that ms + nt = 1. Consequently, 


(b—a)ms = (b— a) — (b—a)nt, 


or 


[((b—a)s]m = (b—a) (mod n). 


Now let k; = (b—a)s. 
To show that any two solutions are congruent modulo mn, let cy and c2 
be two solutions of the system. That is, 


G =a (mod m) 


a 
c= b (mod n) 
for i= 1,2. Then 


c, (mod m) 


C2 


C2 =c, (mod n). 


Therefore, both m and n divide c; — cg. Consequently, co = c; (mod mn). 


Example 21. Let us solve the system 


x=3 (mod 4) 
=4 (mod 5). 


Using the Euclidean algorithm, we can find integers s and t such that 
4s + 5t = 1. Two such integers are s = —1 and t = 1. Consequently, 


cr=at+km=3+4 4ky = 34 4[(5 — 4)4] = 19. 
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Theorem 16.20 (Chinese Remainder Theorem) Let n1,n2,...,nz be 
positive integers such that gcd(nj,nj) = 1 fori Aj. Then for any integers 
Q1,..., az, the system 


x=a, (mod nj) 


az (mod ng) 


L=axz (mod nz) 


has a solution. Furthermore, any two solutions of the system are congruent 
modulo nyng--++ Np. 


PROOF. We will use mathematical induction on the number of equations 
in the system. If there are k = 2 equations, then the theorem is true by 
Lemma 16.19. Now suppose that the result is true for a system of k equations 
or less and that we wish to find a solution of 


=a, (mod nj) 


8 
| 


L=az (mod nz) 


L=Gr41 (mod ng44). 


Considering the first k equations, there exists a solution that is unique 
modulo n,---nz, say a. Since ny---nz and ng+1 are relatively prime, the 
system 


L=a (mod ny--- nz) 


L=aApy, (mod ng11) 


has a solution that is unique modulo n,...n,%41 by the lemma. 


Example 22. Let us solve the system 
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From Example 21 we know that 19 is a solution of the first two congruences 
and any other solution of the system is congruent to 19 (mod 20). Hence, 
we can reduce the system to a system of three congruences: 


x=19 (mod 20) 
x=1 (mod 9) 
x=65 (mod 7). 


Solving the next two equations, we can reduce the system to 


x=19 (mod 180) 
x=5 (mod 7). 


Solving this last system, we find that 19 is a solution for the system that is 
unique up to modulo 1260. | 


One interesting application of the Chinese Remainder Theorem in the 
design of computer software is that the theorem allows us to break up a 
calculation involving large integers into several less formidable calculations. 
Most computers will handle integer calculations only up to a certain size. 
For example, the largest integer available on many workstations is 2°! — 1 = 
2,147,483,647. Special software is required for calculations involving larger 
integers which cannot be added directly by the machine. However, by using 
the Chinese Remainder Theorem we can break down large integer additions 
and multiplications into calculations that the computer can handle directly. 
This is especially useful on parallel processing computers which have the 
ability to run several programs concurrently. 

Most computers have a single central processing unit (CPU), which can 
only add two numbers at a time. To add a list of ten numbers, the CPU must 
do nine additions in sequence. However, a parallel processing computer has 
more than one CPU. A computer with 10 CPUs, for example, can perform 10 
different additions at the same time. If we can take a large integer and break 
it down into parts, sending each part to a different CPU, then by performing 
several additions or multiplications simultaneously on those parts, we can 
work with an integer that the computer would not be able to handle as a 
whole. 


Example 23. Suppose that we wish to multiply 2134 by 1531. We will use 
the integers 95, 97, 98, and 99 because they are relatively prime. We can 
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break down each integer into four parts: 


2134 = 44 (mod 95) 
2134=0 (mod 97) 

2134 = 76 (mod 98) 
2134=55 (mod 99) 


and 
1531 =11 (mod 95) 
1531 = 76 (mod 97) 
1531 =61 (mod 98) 
1531 = 46 (mod 99). 


Multiplying the corresponding equations, we obtain 


2134-1531 = 44-11=9 (mod 95) 
2134-1531 =0-76=0 (mod 97) 
2134-1531 = 76-61 =30 (mod 98) 
2134-1531 = 55-46=55 (mod 99). 


Each of these four computations can be sent to a different processor if 
our computer has several CPUs. By the above calculation, we know that 
2134 - 1531 is a solution of the system 


x=9 (mod 95) 
x=0 (mod 97) 
x = 30 (mod 98) 
x=55 (mod 99). 


The Chinese Remainder Theorem tells us that solutions are unique up to 
modulo 95 - 97 - 98 - 99 = 89,403,930. Solving this system of congruences for 
x tells us that 2134 - 1531 = 3,267,154. 

The conversion of the computation into the four subcomputations will 
take some computing time. In addition, solving the system of congruences 
can also take considerable time. However, if we have many computations to 
be performed on a particular set of numbers, it makes sense to transform the 
problem as we have done above and to perform the necessary calculations 
simultaneously. |_| 
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Exercises 


1. Which of the following sets are rings with respect to the usual operations of 
addition and multiplication? If the set is a ring, is it also a field? 


(a) 7Z 

(b) Zig 

(c) Q(V2) = {a+ bV2:a,b€ Q} 

(d) Q(V2, V3) = {a+ bV24+ cV3 + dvV6: a,b, c,d € Q} 
(e) Z[V/3] = {a+ bV3: a,b € Z} 

(f) R= {a+ bv/3:a,b € Q} 

(g) Zi] = {a+ bi: a,b€ Z and i? = —1} 

(h) Q(V3) = {a+ bW3+4+cV9: a,b,c € Q} 


2. Let R be the ring of 2 x 2 matrices of the form 


a b 
0 OO}? 
where a,b € R. Show that although R is a ring that has no identity, we can 


find a subring S of R with an identity. 


3. List or characterize all of the units in each of the following rings. 


(d) M2(Z), the 2 x 2 matrices with entries in Z 
(e) Mo(Zz2), the 2 x 2 matrices with entries in Z2 


4. Find all of the ideals in each of the following rings. Which of these ideals are 
maximal and which are prime? 


M2(R), the 2 x 2 matrices with entries in R 
M2(Z), the 2 x 2 matrices with entries in Z 


5. For each of the following rings R with ideal J, give an addition table and a 
multiplication table for R/T. 


(a) R=ZandI=6Z 
(b) R=Zypo and I = {0,3,6,9} 
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6. Find all homomorphisms ¢ : Z/6Z > Z/15Z. 
7. Prove that R is not isomorphic to C. 


8. Prove or disprove: The ring Q(V2) = {a + bV2: a,b € Q} is isomorphic to 
the ring Q(V3) = {a + bV3 : a,b € QI. 


9. What is the characteristic of the field formed by the set of matrices 


raf )-G 9-6-6 9} 


with entries in Zo? 


10. Define a map ¢: C > M2(R) by 


ab 
d(a + bi) = (Ss ‘) ; 
Show that ¢ is an isomorphism of C with its image in M2(R). 
11. Prove that the Gaussian integers, Zi], are an integral domain. 
12. Prove that Z[V3 i] = {a + bV3i: a,b € Z} is an integral domain. 


13. Solve each of the following systems of congruences. 


(a) (c) 


= (mod 4) 
«=2 (mod 5) x=4 (mod 7) 
=6 (mod 11) =7 (mod 9) 
(mod 11) 
(b) (d) 
3 (mod 5) 
x=3 (mod 7) =0 (mod 8) 
x=0 (mod 8) x=1 (mod 11) 
x=5 (mod 15) (mod 13) 


14. Use the method of parallel computation outlined in the text to calculate 
2234 + 4121 by dividing the calculation into four separate additions modulo 
95, 97, 98, and 99. 


15. Explain why the method of parallel computation outlined in the text fails 
for 2134-1531 if we attempt to break the calculation down into two smaller 
calculations modulo 98 and 99. 


264 


16. 
17. 
18. 


19. 


20. 


21. 


22. 


23. 


24. 


25. 


26. 
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If R is a field, show that the only two ideals of R are {0} and R itself. 
Let a be any element in a ring R with identity. Show that (—1)a = —a. 


Let ¢ : R + S be a ring homomorphism. Prove each of the following 
statements. 


(a) If R is a commutative ring, then $(R) is a commutative ring. 

(b) 9(0) = 0. 

(c) Let lz and 1g be the identities for R and S, respectively. If ¢ is onto, 
then o(1R) =l1g¢. 

(d) If R is a field and ¢(R) 4 0, then ¢(R) is a field. 


Prove that the associative law for multiplication and the distributive laws 
hold in R/T. 


Prove the Second Isomorphism Theorem for rings: Let I be a subring of a 
ring R and J an ideal in R. Then JM J is an ideal in J and 


TEOS LELIS 


Prove the Third Isomorphism Theorem for rings: Let R be a ring and I and 
J be ideals of R, where J C J. Then 
R/J 


NU age 


Prove the Correspondence Theorem: Let J be an ideal of a ring R. Then 
S — S/I is a one-to-one correspondence between the set of subrings S$ 
containing I and the set of subrings of R/I. Furthermore, the ideals of R 
correspond to ideals of R/T. 


Let R be a ring and S a subset of R. Show that S is a subring of R if and 
only if each of the following conditions is satisfied. 


(a) SAO. 
(b) rs € S for all r,s € S. 
(c) r—s€S forallr,s €S. 
Let R be a ring with a collection of subrings {R.}. Prove that (| Ra is a 


subring of R. Give an example to show that the union of two subrings cannot 
be a subring. 


Let {Ia}aea be a collection of ideals in a ring R. Prove that ees Ix is also 
an ideal in R. Give an example to show that if J; and Iz are ideals in R, then 
I, U Ig may not be an ideal. 


Let R be an integral domain. Show that if the only ideals in R are {0} and 
R itself, R must be a field. 
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27. 


28. 


29. 


30. 


3l. 


32. 


33. 


34. 


35. 
36. 


37. 


Let R be a commutative ring. An element a in R is nilpotent if a” = 0 for 
some positive integer n. Show that the set of all nilpotent elements forms an 
ideal in R. 


A ring R is a Boolean ring if for every a € R, a? =a. Show that every 
Boolean ring is a commutative ring. 


Let R be a ring, where a® = a for all a € R. Prove that R must be a 
commutative ring. 


Let R be a ring with identity 1g and S a subring of R with identity 1g. Prove 
or disprove that lr = lg. 


If we do not require the identity of a ring to be distinct from 0, we will not 
have a very interesting mathematical structure. Let R be a ring such that 
1=0. Prove that R = {0}. 


Let S be a subset of a ring R. Prove that there is a subring R’ of R that 
contains S. 


Let R be a ring. Define the center of R to be 
Z(R) ={ae R: ar=ra for all re R }. 


Prove that Z(R) is a commutative subring of R. 


Let p be prime. Prove that 
Zip) = {a/b: a,b € Z and ged(b, p) = 1} 
is a ring. The ring Z,,) is called the ring of integers localized at p. 
Prove or disprove: Every finite integral domain is isomorphic to Zp. 
Let R be a ring with identity. 


(a) Let u be a unit in R. Define a map i, : R- R by r+ urut. Prove 
that 2,, is an automorphism of R. Such an automorphism of R is called 
an inner automorphism of R. Denote the set of all inner automorphisms 
of R by Inn(R). 

(b) Denote the set of all automorphisms of R by Aut(R). Prove that Inn(R) 
is a normal subgroup of Aut(R). 


Let U(R) be the group of units in R. Prove that the map 


— 
lo) 
WN 


~:U(R) > Inn(R) 
defined by u+> i, is a homomorphism. Determine the kernel of ¢. 
(d) Compute Aut(Z), Inn(Z), and U(Z). 


Let R and S' be arbitrary rings. Show that their Cartesian product is a ring 
if we define addition and multiplication in R x S by 
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38. 


39. 


AO. 
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(a) (r,s) + (7,8) =(r+1',8 +8") 
(b) (1, 8)(7’, 8’) = (rr’, ss’) 
An element x in a ring is called an idempotent if x? = x. Prove that the 


only idempotents in an integral domain are 0 and 1. Find a ring with a 
idempotent x not equal to 0 or 1. 


Let gcd(a,n) = d and gcd(b,d) 4 1. Prove that ax = b (mod n) does not 
have a solution. 


The Chinese Remainder Theorem for Rings. Let R be a ring and I 
and J be ideals in R such that [+ J = R. 


(a) Show that for any r and s in R, the system of equations 


r (mod f) 
s (mod J) 


has a solution. 


(b) In addition, prove that any two solutions of the system are congruent 
modulo In J. 


(c) Let I and J be ideals in a ring R such that J+ J = R. Show that there 
exists a ring isomorphism 


R/(INJ) = R/T x R/J. 


Programming Exercise 


Write a computer program implementing fast addition and multiplication 
using the Chinese Remainder Theorem and the method outlined in the text. 
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Sage Rings are at the heart of Sage’s design, so you will find a wide range 
of possibilities for computing with rings and fields. Ideals, quotients, and 
homomorphisms are all available. 
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Polynomials 


Most people are fairly familiar with polynomials by the time they begin to 
study abstract algebra. When we examine polynomial expressions such as 


p(x) = 2? — 32 +2 
q(x) = 3x7 — 62 +5, 


we have a pretty good idea of what p(x) + q(x) and p(x)q(x) mean. We just 
add and multiply polynomials as functions; that is, 


(p + q)(x) = p(x) + g(x) 
= (x? — 3x + 2) + (3a? — 62 +5) 
= 7° + 327-97 +7 


and 


(pq)(x) = p(x)q(x) 
= (x° — 32 + 2)(32? — 62 + 5) 
= 3r° — 6x4 — 4x? + 24x? — 277 + 10. 


It is probably no surprise that polynomials form a ring. In this chapter we 
shall emphasize the algebraic structure of polynomials by studying polynomial 
rings. We can prove many results for polynomial rings that are similar to 
the theorems we proved for the integers. Analogs of prime numbers, of the 
division algorithm, and of the Euclidean algorithm exist for polynomials. 
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17.1 Polynomial Rings 


Throughout this chapter we shall assume that R is a commutative ring with 
identity. Any expression of the form 


n 
f(z) = ae = ag + aye + aga? +--- + anx”, 

i=0 
where a; € R and a, ¥ 0, is called a polynomial over R with indeter- 
minate x. The elements ao,a1,...,@, are called the coefficients of f. 
The coefficient a, is called the leading coefficient. A polynomial is called 
monic if the leading coefficient is 1. If n is the largest nonnegative number 
for which a, 4 0, we say that the degree of f is n and write deg f(x) =n. 
If no such n exists—that is, if f = 0 is the zero polynomial—then the degree 
of f is defined to be —oo. We will denote the set of all polynomials with 
coefficients in a ring R by R[x]. Two polynomials are equal exactly when 
their corresponding coefficients are equal; that is, if we let 


p(x) = a9 + aye +--- + an2” 
q(x) = bo + bit +--+ + dma™, 


then p(x) = q(x) if and only if a; = 6; for all i > 0. 

To show that the set of all polynomials forms a ring, we must first define 
addition and multiplication. We define the sum of two polynomials as follows. 
Let 


p(x) = a9 + aye +--+ + an2” 
q(x) = bo + bya +--+ +bme™. 


Then the sum of p(x) and q(x) is 
p(x) + q(x) =ceotcart::-+ ear, 
where c; = a; + b; for each i. We define the product of p(x) and q(x) to be 
p(x)q(x) = co + et +++ + mane, 


where 


a 
G= Ss" apbj;_~ = agbj + a, bj_1 +--+ + a;_1b1 + ajbo 
k=0 
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for each 7. Notice that in each case some of the coefficients may be zero. 
Example 1. Suppose that 
p(x) =34 Or + Ox? + 2x? + Ox4 


and 
q(x) = 2+0xr — x? + Ox? + 4e4 


are polynomials in Z/z]. If the coefficient of some term in a polynomial 
is zero, then we usually just omit that term. In this case we would write 
p(x) = 3+22? and q(x) = 2—27+4a*. The sum of these two polynomials is 


p(x) + q(x) =5— 2? + 2a? + 4a%. 
The product, 
p(x)q(x) = (3 + 2ax3)(2 — a? + 4x4) = 6 — 3x? 4 4x? 4+ 1204 — 22° 4 82", 


can be calculated either by determining the c;’s in the definition or by simply 
multiplying polynomials in the same way as we have always done. a 


Example 2. Let 
p(t) = 34323 and q(x) = 4+ 4a? + 4x4 


be polynomials in Z2[xz]. The sum of p(x) and q(x) is 7 + 4a? + 323 + 424. 
The product of the two polynomials is the zero polynomial. This example 


tells us that R[x] cannot be an integral domain if R is not an integral domain. 
| 


Theorem 17.1 Let R be a commutative ring with identity. Then R[x] is a 
commutative ring with identity. 


Proor. Our first task is to show that R[x] is an abelian group under 
polynomial addition. The zero polynomial, f(a) = 0, is the additive identity. 
Given a polynomial p(x) = 7", a2’, the inverse of p(x) is easily verified to 
be —p(x) = 77_)(—ai)a* = — 0", az’. Commutativity and associativity 
follow immediately from the definition of polynomial addition and from the 
fact that addition in R is both commutative and associative. 
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To show that polynomial multiplication is associative, let 


m 
p(x“) = S- ax’, 
i=0 


Then 


i 
— 
8 
eee 
ae 
ae 
= 
—— 
8 
et 
l| lI lI l| 
é 1 -—7 
Mi tMe Mi 
gt 3 
eal & 
o 
Miso 2 
& 3 &. 
a > 
le) S 8 
2 | 
> 
& Me 
& 
8, 
ee 


i=0 jtk+l=i 
m+n+p a IJ 
~ ~ ~ i 
= aj beCjy_j—k x 
i=0 j=0 k=0 


I 
a ™~ 
Ma 
g 
a 
Ne 
Me 
be 
a 
Kes 
4 
8 


-(E«)[e~) &) 


= p(x) [q(x)r(2)] 
The commutativity and distribution properties of polynomial multiplication 
are proved in a similar manner. We shall leave the proofs of these properties 
as an exercise. 


Proposition 17.2 Let p(x) and q(x) be polynomials in R|x], where R is an 
integral domain. Then deg p(x) + deg q(x) = deg(p(x)q(x)). 
R{x] is an integral domain. 


Furthermore, 
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PROOF. Suppose that we have two nonzero polynomials 
p(L) = Amz” +--+ +a1x + a9 
and 
q(x) = bax” +--+ + b,x + bo 
with am # 0 and b, #0. The degrees of p and q are m and n, respectively. 
The leading term of p()q(x) is @mbpxz™*", which cannot be zero since R is 
an integral domain; hence, the degree of p(x)q(x) is m+n, and p(x)q(x) 4 0. 
Since p(x) # 0 and q(x) 4 0 imply that p(x)q(x) 4 0, we know that R[x 
must also be an integral domain. 


We also want to consider polynomials in two or more variables, such 
as xz? — 3xy + 2y?. Let R be a ring and suppose that we are given two 
indeterminates x and y. Certainly we can form the ring (R{z])[y]. It is 
straightforward but perhaps tedious to show that (R[z])|y] = R([y])[z]. We 
shall identify these two rings by this isomorphism and simply write R[x, y]. 
The ring R[x, y] is called the ring of polynomials in two indeterminates 
x and y with coefficients in R. We can define the ring of polynomials 
inn indeterminates with coefficients in R similarly. We shall denote 
this ring by R[x, x2,..., tn]. 


Theorem 17.3 Let R be a commutative ring with identity anda € R. Then 
we have a ring homomorphism ¢q : R[x] > R defined by 


ga(p(z)) = pla) = ana” +--+ +410 + a0, 
where p(x) = ant" +--+ + a1x4 + a0. 


Proor. Let p(z) = 07_,a2 and g(x) = i", bia’. It is easy to show 
that ¢a(p(x) + q(x)) = ¢a(p(x)) + ba(¢(x)). To show that multiplication is 
preserved under the map ¢,, observe that 


bal(p(x))ba(a(x)) = p(a)a(a) 


— (= wc) (s ho’) 
i=0 1=0 
m+n a 
= S- ( tr) a’ 
k=0 


i=0 


= $a(p(x)q(z)). 


The map ¢q : Riz] > R is called the evaluation homomorphism 
at a. 
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17.2 The Division Algorithm 


Recall that the division algorithm for integers (Theorem 2.3) says that if 
a and b are integers with 6 > 0, then there exist unique integers q and r 
such that a = bg +r, where 0 <r < b. The algorithm by which qg and r 
are found is just long division. A similar theorem exists for polynomials. 
The division algorithm for polynomials has several important consequences. 
Since its proof is very similar to the corresponding proof for integers, it is 
worthwhile to review Theorem 2.3 at this point. 


Theorem 17.4 (Division Algorithm) Let f(x) and g(x) be two nonzero 
polynomials in F' |x], where F is a field and g(x) is a nonconstant polynomial. 
Then there exist unique polynomials q(x),r(x) € Fa] such that 


f(x) = g(x)q(@) + r(@), 
where either deg r(x) < deg g(x) or r(x) is the zero polynomial. 


PROOF. We will first consider the existence of q(x) and r(x). Let S = 
{f(x) — g(x)h(x) : h(x) € F[a]} and assume that 


g(x) = ap tayx +--+ + anz” 


is a polynomial of degree n. This set is nonempty since f(x) € S. If f(z) is 
the zero polynomial, then 


0 = f(a) =0- g(a) + 0; 


hence, both g and r must also be the zero polynomial. 

Now suppose that the zero polynomial is not in S. In this case the 
degree of every polynomial in S is nonnegative. Choose a polynomial r(x) of 
smallest degree in S; hence, there must exist a q(x) € F[z] such that 


r(x) = f(x) — g(w)a(@), 
or 

f(x) = g(w)q(@) + r(@). 
We need to show that the degree of r(x) is less than the degree of g(x). 
Assume that deg g(x) < degr(x). Say r(x) = bo + bia +--+ + b,x” and 
m>n. Then 
f(x) — g(x)|a(@) + (Om/an)a"" "| = f(x) — g(x)q(x) — (Om/an)a™" g(x) 
r(x) — (bm/an a" g(x) 
r(x) — bma’™” + terms of lower degree 
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is in S. This is a polynomial of lower degree than r(x), which contradicts 
the fact that r(a) is a polynomial of smallest degree in S; hence, deg r(x) < 
deg g(r). 

To show that q(x) and r(x) are unique, suppose that there exist two 
other polynomials q/(a) and r’(x) such that f(x) = g(x)q'(a) + 1’(a) and 
deg r’(x) < deg g(x) or r’(x) = 0, so that 


f(x) = g(x)q(x) + r(x) = g(x)q'(x) + r'(2), 
and 
g(x) [q(x) — q'(x)| = 1'(x) — r(2). 
If g is not the zero polynomial, then 


deg(9(x)[q(x) — q'(x)]) = deg(r’(x) — r(x)) = deg g(x). 


However, the degrees of both r(x) and r’(x) are strictly less than the degree 
of g(x); therefore, r(x) = r'(a) and q(x) = q‘(z). 


Example 3. The division algorithm merely formalizes long division of 
polynomials, a task we have been familiar with since high school. For 
example, suppose that we divide 2° — 7? + 2x — 3 by x — 2. 


ge? xa + 4 


a—-2[ 23 — gf Oe = 3 
po Oy 

ge pen Be SB 

, 
4r -— 3 
4x -— 8 
5 

Hence, x? — x? + 22 —3 = (x — 2)(2? +2 +4) +5. a 


Let p(x) be a polynomial in Fz] and a € F’. We say that a is a zero or 
root of p(x) if p(x) is in the kernel of the evaluation homomorphism ¢,. All 
we are really saying here is that a is a zero of p(x) if p(a) = 0. 


Corollary 17.5 Let F be a field. An element a € F is a zero of p(x) € Fiz] 
if and only if x — a is a factor of p(x) in F[a]. 


PRooF. Suppose that a € F' and p(a) = 0. By the division algorithm, there 
exist polynomials q(x) and r(x) such that 


p(@) = (a — a)q(x) + r(x) 
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and the degree of r(x) must be less than the degree of x — a. Since the 
degree of r(x) is less than 1, r(x) = a for a € F; therefore, 


p(x) = (a — a)q(x) +4. 


But 
0=p(a) =0-¢q(z)+a=<a; 


consequently, p(x) = (a — a)q(x), and x — a is a factor of p(x). 
Conversely, suppose that x — a is a factor of p(x); say p(x) = (x—a)q(z). 
Then p(a) =0- q(x) =0. 


Corollary 17.6 Let F be a field. A nonzero polynomial p(x) of degree n in 
F [x] can have at most n distinct zeros in F. 


ProoF. We will use induction on the degree of p(x). If deg p(x) = 0, then 
p(x) is a constant polynomial and has no zeros. Let deg p(x) = 1. Then 
p(x) = ax + 6 for some a and 6 in F. If ay and az are zeros of p(x), then 
aa, +b=aao+6 or a] = ae. 

Now assume that deg p(x) > 1. If p(x) does not have a zero in F’, then we 
are done. On the other hand, if a is a zero of p(x), then p(x) = (x — a)q(z) 
for some q(x) € Fa] by Corollary 17.5. The degree of q(x) is n — 1 by 
Proposition 17.2. Let 8 be some other zero of p(x) that is distinct from a. 
Then p(G) = (6G — a)q(B) = 0. Since a ¥ 6 and F is a field, g(G) = 0. By 
our induction hypothesis, p(x) can have at most n — 1 zeros in F' that are 
distinct from a. Therefore, p(x) has at most n distinct zeros in F’. 


Let F be a field. A monic polynomial d(x) is a greatest common 
divisor of polynomials p(x), q(x) € F [x] if d(x) evenly divides both p(x) 
and q(a); and, if for any other polynomial d’(x) dividing both p(x) and q(x), 
d'(a) | d(a). We write d(x) = gcd(p(x), q(x)). Two polynomials p(x) and 
q(x) are relatively prime if gcd(p(x), q(x)) = 1. 


Proposition 17.7 Let F be a field and suppose that d(x) is the greatest 
common divisor of two polynomials p(x) and q(x) in Fa]. Then there exist 
polynomials r(x) and s(x) such that 


d(x) = r(x)p(@) + s(x)q(@). 


Furthermore, the greatest common divisor of two polynomials is unique. 
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ProorF. Let d(x) be the monic polynomial of smallest degree in the set 


S = {f(x)p(x) + g(@)a() = f(x), g(@) € Fla}. 


We can write d(x) = r(x)p(x) + s(x)q(x) for two polynomials r(x) and s(z) 
in F|a]. We need to show that d(a) divides both p(x) and q(x). We shall 
first show that d(x) divides p(x). By the division algorithm, there exist 
polynomials a(x) and b(x) such that p(x) = a(x)d(x) + b(x), where b(x) is 
either the zero polynomial or deg b(x) < deg d(x). Therefore, 


b(x) = p(x) — a(x)d(x) 
= p(x) — a(x) (r(w)p(x) + s(@)q(@)) 
= p(x) — a(x)r(x)p(x) — a(a)s(x)q(x) 
= p(«)(1 — a(a)r(x)) + a(@)(—a(x)s(@)) 


is a linear combination of p(x) and g(x) and therefore must be in S. However, 
b(x) must be the zero polynomial since d(x) was chosen to be of smallest 
degree; consequently, d(a) divides p(x). A symmetric argument shows that 
d(x) must also divide q(x); hence, d(x) is a common divisor of p(x) and q(z). 

To show that d(x) is a greatest common divisor of p(x) and q(x), suppose 
that d'(x) is another common divisor of p(x) and q(x). We will show that 
d'(x) | d(x). Since d’(x) is a common divisor of p(x) and q(x), there exist 
polynomials u(x) and v(a) such that p(a) = u(a)d'(x) and q(x) = v(x)d'(z). 
Therefore, 


Since d'(x) | d(x), d(x) is a greatest common divisor of p(x) and q(x). 

Finally, we must show that the greatest common divisor of p(x) and q(x)) 
is unique. Suppose that d'(a) is another greatest common divisor of p(x) 
and q(x). We have just shown that there exist polynomials u(x) and v(a) in 
F [zx] such that d(x) = d'(x)[r(x)u(x) + s(x)v(x)]. Since 


deg d(x) = deg d'(x) + deg[r(x)u(x) + s(x)v(x)] 


and d(a) and d'(x) are both greatest common divisors, deg d(x) = deg d'(z). 
Since d(x) and d’(x) are both monic polynomials of the same degree, it must 
be the case that d(x) = d'(z). 


Notice the similarity between the proof of Proposition 17.7 and the proof 
of Theorem 2.4. 
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17.3. Irreducible Polynomials 


A nonconstant polynomial f(x) € Fa] is irreducible over a field F if f(x) 
cannot be expressed as a product of two polynomials g(x) and h(x) in F{a}, 
where the degrees of g(x) and h(x) are both smaller than the degree of f(z). 
TIrreducible polynomials function as the “prime numbers” of polynomial rings. 


Example 4. The polynomial x? — 2 € Q{z] is irreducible since it cannot be 
factored any further over the rational numbers. Similarly, x? +1 is irreducible 
over the real numbers. | 


Example 5. The polynomial p(x) = x? + x? + 2 is irreducible over Z3[z]. 
Suppose that this polynomial was reducible over Zs[{x]._ By the division 
algorithm there would have to be a factor of the form x — a, where a is some 
element in Z3[x]. Hence, it would have to be true that p(a) = 0. However, 


p(0) = 2 
pl) =1 
p(2) = 2 
Therefore, p(x) has no zeros in Zz and must be irreducible. a 


Lemma 17.8 Let p(x) € Q[z]. Then 
p(x) = ~(a0 +012 +++» +anx"), 


where r,8,49,...,@n, are integers, the a;’s are relatively prime, and r and s 
are relatively prime. 


PROOF. Suppose that 


where the 6;’s and the c;’s are integers. We can rewrite p(x) as 


1 
p(x) = (do +dyx+---+d,2x"), 
Co*+' Cn 
where do,...,d, are integers. Let d be the greatest common divisor of 
do,...,dn. Then 
d n 
pa} = (a9 +ajxz+---+an2"), 


Cor CR 
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where d; = da; and the a,’s are relatively prime. Reducing d/(co---cn) to 
its lowest terms, we can write 


: 
p(x) = 5 (a0 + az +-++++ nx"), 


where gcd(r, 5) = 1. 


Theorem 17.9 (Gauss’s Lemma) Let p(x) € Z[x] be a monic polynomial 
such that p(x) factors into a product of two polynomials a(x) and B(x) in 
Q[z], where the degrees of both a(x) and B(x) are less than the degree of 
p(x). Then p(x) = a(x)b(x), where a(x) and b(x) are monic polynomials in 
Z|x] with deg a(x) = deg a(x) and deg B(x) = deg b(z). 


PRooF. By Lemma 17.8, we can assume that 


a(x) = 1(ap + ara +--+ + ama™) = Lay (zx) 
2 dy 

B(x) = 2 (bo + bia +--+ + bn 2”) = 2 By (2), 
do dg 


where the a;’s are relatively prime and the 0,;’s are relatively prime. Conse- 
quently, 


pin) = ele) ln) = eae) File) 5aule )P1(a), 


where c/d is the product of c;/d; and c2/d2 expressed in lowest terms. Hence, 
dp(x) = ca, (x) i (x). 

If d=1, then cambp = 1 since p(x) is a monic polynomial. Hence, either 
c=lorc=-—l. If c=1, then either a,, = bp) = 1 or am = bn = —1. In the 
first case p(x) = a1(x)61(x), where a(x) and $1(x) are monic polynomials 
with dega(x) = dega (x) and deg B(x) = deg f(x). In the second case 
a(x) = —a;(x) and b(x) = —6;(z) are the correct monic polynomials since 
p(%) = (—a1(x))(—61(x)) = a(x)b(x). The case in which c = —1 can be 
handled similarly. 

Now suppose that d 4 1. Since gcd(c, d) = 1, there exists a prime p such 
that p|d and pJc. Also, since the coefficients of a(x) are relatively prime, 
there exists a coefficient a; such that p /a;. Similarly, there exists a coefficient 
b; of 61(x) such that pJb;. Let a{ (x) and 6{(x) be the polynomials in Z,[z] 
obtained by reducing the coefficients of ai(x) and $;(2) modulo p. Since 
p | d, a'(x) B(x) = 0 in Z,[ax]. However, this is impossible since neither a(x) 
nor 34(x) is the zero polynomial and Z,|z] is an integral domain. Therefore, 
d = 1 and the theorem is proven. 


17.3. IRREDUCIBLE POLYNOMIALS 279 


Corollary 17.10 Let p(x) = 2" +Gn_12"" 1 +-+-++ a9 be a polynomial with 
coefficients in Z and ap #0. If p(x) has a zero in Q, then p(x) also has a 
zero a in Z. Furthermore, a divides ao. 


Proor. Let p(x) have a zero a € Q. Then p(x) must have a linear factor 
x —a. By Gauss’s Lemma, p(x) has a factorization with a linear factor in 
Z|x]. Hence, for some a € Z 


p(x) = (2 — a) (x1 +--+ a9/a). 


Thus ao/a € Z and so a | ao. 


Example 6. Let p(x) = x+ — 22? +a+1. We shall show that p(x) is 
irreducible over Q[x]. Assume that p(x) is reducible. Then either p(x) has a 
linear factor, say p(x) = (a — a)q(x), where q(x) is a polynomial of degree 
three, or p(x) has two quadratic factors. 

If p(x) has a linear factor in Q[z], then it has a zero in Z. By Corol- 
lary 17.10, any zero must divide 1 and therefore must be +1; however, 
p(1) = 1 and p(—1) = 3. Consequently, we have eliminated the possibility 
that p(a) has any linear factors. 

Therefore, if p(x) is reducible it must factor into two quadratic polyno- 
mials, say 


p(x) = (a? + ax + b)(x? + cx + d) 
=a2'+(a+c)x?4+(ac+b+d)x? + (ad + bc)x + bd, 


where each factor is in Z[x] by Gauss’s Lemma. Hence, 


at+c=-—2 
ac+b+d=0 
ad + bc = 1 
bd = 1. 


Since bd = 1, either b= d=1 or b=d=- 1. In either case b = d and so 
ad + be = b(a+c) =1. 


Since a +c = —2, we know that —2b = 1. This is impossible since 6 is an 
integer. Therefore, p(x) must be irreducible over Q. | 
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Theorem 17.11 (Eisenstein’s Criterion) Let p be a prime and suppose 
that 

f(t) =an2"+---+a9 € Z[z]. 
If p| a; fori=0,1,...,n—1, but pan and p* Jao, then f(x) is irreducible 
over Q. 


Proor. By Gauss’s Lemma, we need only show that f(x) does not factor 
into polynomials of lower degree in Z{x]. Let 


f(x) = (bpa” +++++ bo) (csx* +--+ + 0) 


be a factorization in Z/z], with b, and c, not equal to zero and r,s < n. Since 
p* does not divide ag = boco, either bo or co is not divisible by p. Suppose 
that p jbo and p | co. Since psa, and a, = b,cs, neither b, nor c, is divisible 
by p. Let m be the smallest value of k such that pJc,. Then 


Am = b9Cm + bicm—1 + +++ + bmeo 


is not divisible by p, since each term on the right-hand side of the equation 
is divisible by p except for bocm. Therefore, m =n since a; is divisible by p 
for m <n. Hence, f(x) cannot be factored into polynomials of lower degree 
and therefore must be irreducible. 


Example 7. The polynomial 


p(x) = 162° — 9x* + 327 + 6x — 21 


is easily seen to be irreducible over Q by Eisenstein’s Criterion if we let p = 3. 
a 


Eisenstein’s Criterion is more useful in constructing irreducible poly- 
nomials of a certain degree over Q than in determining the irreducibility 
of an arbitrary polynomial in Q{z]: given an arbitrary polynomial, it is 
not very likely that we can apply Eisenstein’s Criterion. The real value of 
Theorem 17.11 is that we now have an easy method of generating irreducible 
polynomials of any degree. 


Ideals in Fr] 


Let F' be a field. Recall that a principal ideal in F'{a] is an ideal (p()) 
generated by some polynomial p(x); that is, 


(p(@)) = {p(@)q(a) : a(@) € Fla]}. 
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Example 8. The polynomial x? in F[z] generates the ideal (a?) consisting 
of all polynomials with no constant term or term of degree 1. | 


Theorem 17.12 Jf F is a field, then every ideal in F'|x] is a principal ideal. 


Proor. Let J be an ideal of F(x]. If I is the zero ideal, the theorem is 
easily true. Suppose that J is a nontrivial ideal in Fz], and let p(x) € I be 
a nonzero element of minimal degree. If deg p(x) = 0, then p(x) is a nonzero 
constant and 1 must be in J. Since 1 generates all of F'[zx], (1) =I = Fiz] 
and I is again a principal ideal. 

Now assume that deg p(x) > 1 and let f(a) be any element in J. By 
the division algorithm there exist q(x) and r(x) in F[z] such that f(x) = 
p(x)q(x) + r(x) and degr(x) < deg p(x). Since f(x), p(x) € I and J is an 
ideal, r(x) = f(x) — p(x)q(a) is also in I. However, since we chose p(x) to 
be of minimal degree, r(x) must be the zero polynomial. Since we can write 
any element f(x) in I as p(x)q(x) for some q(x) € F[x], it must be the case 
that I = (p(x)). 


Example 9. It is not the case that every ideal in the ring F[z,y] is a 
principal ideal. Consider the ideal of Fx, y] generated by the polynomials 
x and y. This is the ideal of Fz, y] consisting of all polynomials with no 
constant term. Since both x and y are in the ideal, no single polynomial can 
generate the entire ideal. | 


Theorem 17.13 Let F be a field and suppose that p(x) € Fx]. Then the 
ideal generated by p(x) is maximal if and only if p(x) is irreducible. 


PROOF. Suppose that p(x) generates a maximal ideal of F'[x]. Then (p(x)) is 
also a prime ideal of F'[”]. Since a maximal ideal must be properly contained 
inside F'[x], p(x) cannot be a constant polynomial. Let us assume that p(x) 
factors into two polynomials of lesser degree, say p(x) = f(x)g(x). Since 
(p(x)) is a prime ideal one of these factors, say f(x), is in (p(x)) and therefore 
be a multiple of p(x). But this would imply that (p(x)) C (f(x)), which is 
impossible since (p(z)) is maximal. 

Conversely, suppose that p(x) is irreducible over F'[x]. Let I be an ideal 
in Fx] containing (p(x)). By Theorem 17.12, I is a principal ideal; hence, 
I = (f(x)) for some f(x) € Fla]. Since p(x) € I, it must be the case 
that p(x) = f(x)g(x) for some g(x) € Fx]. However, p(x) is irreducible; 
hence, either f(z) or g(x) is a constant polynomial. If f(x) is constant, 
then J = Fa] and we are done. If g(x) is constant, then f(x) is a constant 
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multiple of J and I = (p(x)). Thus, there are no proper ideals of F'[x] that 
properly contain (p(z)). 


Historical Note | 


Throughout history, the solution of polynomial equations has been a challenging 
problem. The Babylonians knew how to solve the equation ax? + bx +c = 0. Omar 
Khayyam (1048-1131) devised methods of solving cubic equations through the 
use of geometric constructions and conic sections. The algebraic solution of the 
general cubic equation ax + bx? + cx + d = 0 was not discovered until the sixteenth 
century. An Italian mathematician, Luca Pacioli (ca. 1445-1509), wrote in Summa 
de Arithmetica that the solution of the cubic was impossible. This was taken as a 
challenge by the rest of the mathematical community. 

Scipione del Ferro (1465-1526), of the University of Bologna, solved the “de- 
pressed cubic,” 

an +cex+d=0. 


He kept his solution an absolute secret. This may seem surprising today, when 
mathematicians are usually very eager to publish their results, but in the days of the 
Italian Renaissance secrecy was customary. Academic appointments were not easy 
to secure and depended on the ability to prevail in public contests. Such challenges 
could be issued at any time. Consequently, any major new discovery was a valuable 
weapon in such a contest. If an opponent presented a list of problems to be solved, 
del Ferro could in turn present a list of depressed cubics. He kept the secret of 
his discovery throughout his life, passing it on only on his deathbed to his student 
Antonio Fior (ca. 1506-?). 

Although Fior was not the equal of his teacher, he immediately issued a challenge 
to Niccolo Fontana (1499-1557). Fontana was known as Tartaglia (the Stammerer). 
As a youth he had suffered a blow from the sword of a French soldier during an 
attack on his village. He survived the savage wound, but his speech was permanently 
impaired. Tartaglia sent Fior a list of 30 various mathematical problems; Fior 
countered by sending Tartaglia a list of 30 depressed cubics. Tartaglia would either 
solve all 30 of the problems or absolutely fail. After much effort Tartaglia finally 
succeeded in solving the depressed cubic and defeated Fior, who faded into obscurity. 

At this point another mathematician, Gerolamo Cardano (1501-1576), entered 
the story. Cardano wrote to Tartaglia, begging him for the solution to the depressed 
cubic. Tartaglia refused several of his requests, then finally revealed the solution to 
Cardano after the latter swore an oath not to publish the secret or to pass it on to 
anyone else. Using the knowledge that he had obtained from Tartaglia, Cardano 
eventually solved the general cubic 


az® + ba? + cx +d=0. 


Cardano shared the secret with his student, Ludovico Ferrari (1522-1565), who 
solved the general quartic equation, 


ax’ + ba? + crx? +dxr+e=0. 
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In 1543, Cardano and Ferrari examined del Ferro’s papers and discovered that he 
had also solved the depressed cubic. Cardano felt that this relieved him of his 
obligation to Tartaglia, so he proceeded to publish the solutions in Ars Magna 
(1545), in which he gave credit to del Ferro for solving the special case of the cubic. 
This resulted in a bitter dispute between Cardano and Tartaglia, who published the 


story of the oath a year later. 


Exercises 


1. List all of the polynomials of degree 3 or less in Z2[z]. 


2. Compute each of the following. 


(a) (5a? + 3a — 4) + (42? — 2 +9) in Zy2 
(b) (5x7 + 3x2 — 4)(4a? —24+9) in Zz. 

(c) (7x? + 3x? — x) + (6x? — 82 + 4) in Zg 
(d) (3a? + 2a — 4) + (4x? + 2) in Z; 

(e) (8a? + 2x — 4)(4x? + 2) in Zs 

(f) (527 + 3a — 2)? in Zi2 


3. Use the division algorithm to find q(x) and r(x) such that a(x) = q(x)b(x) + 


r(x) with deg r(a) < deg b(x) for each of the following pairs of polynomials. 
(a) a(x) = 5a? + 6x? — 324+ 4 and B(x) = x — 2 in Z7[z] 
(b) a(x) = 6r* — 223 + x? — 3241 and W(rz) = 2? + 2-2 in Z,[z] 
(c) a(x) = 4a° — 2? + 2? 4 4 and D(z) = x — 2 in Zs [2] 


(d) a(x) = 2° +23 — x? —@ and D(z) = 2? +2 in Zy[z] 


4. Find the greatest common divisor of each of the following pairs p(x) and q(x) 
of polynomials. If d(a) = gcd(p(x), q(a)), find two polynomials a(x) and b(x) 
such that a(x)p(x) + 6(@)q(x) = d(z). 


(a) p(x) = 7x? + 6a? — 82 +4 and g(x) = x2 +x —2, where p(x), g(x) € Q[z] 
(b) p(x) =a? +a? -—a2+1 and q(x) = 2° + 2-1, where p(x), g(x) € Za[z] 
(c) p(x) = a3 +2? —42+4 and q(x) = x? +3 —2, where p(x), q(x) € Zs[z] 
(d) p(x) = 2° — 22 +4 and g(x) = 4x? + x + 3, where p(x), q(x) € Q{z] 


5. Find all of the zeros for each of the following polynomials. 


(a) 5a3 + 4a? —24+9 in Zo (c) 5a4 + 2a? — 3 in Z, 
(b) 323 — 42? -2 +4 in Z5 (d) a +2+1inZ, 
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21. 


22. 


23. 
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. Find all of the units in Z[z]. 
. Find a unit p(x) in Z4[z] such that deg p(x) > 1. 


. Which of the following polynomials are irreducible over Q[z]? 


(a) ct—293 +27? +244 (c) 3a° — 423 — 62? +6 
(b) «4 — 5a? + 32-2 (d) 52° — 624 — 32? + 9a — 15 


. Find all of the irreducible polynomials of degrees 2 and 3 in Z2[]. 
. Give two different factorizations of x? + 2 + 8 in Zyo[z]. 


. Prove or disprove: There exists a polynomial p(x) in Ze[x] of degree n with 


more than n distinct zeros. 


. If F is a field, show that F[a1,...,2,] is an integral domain. 
. Show that the division algorithm does not hold for Z[z]. Why does it fail? 
. Prove or disprove: x? + a is irreducible for any a € Z,, where p is prime. 


. Let f(x) be irreducible. If f(a) | p(x)¢(x), prove that either f(x) | p(x) or 


f(x) | (a). 


. Suppose that R and S are isomorphic rings. Prove that R[x] = S{z]. 
. Let F be a field anda é F. If p(x) € Fa], show that p(a) is the remainder 


obtained when p(x) is divided by x — a. 


. Let Q* be the multiplicative group of positive rational numbers. Prove that 


Q* is isomorphic to (Z[z], +). 
Cyclotomic Polynomials. The polynomial 


n 
2” —1 = = 


®,,(x) = 


a-l1 


is called the cyclotomic polynomial. Show that ®,(x) is irreducible over 
Q for any prime p. 


If F is a field, show that there are infinitely many irreducible polynomials in 
F Iz]. 

Let R be a commutative ring with identity. Prove that multiplication is 
commutative in R[:]. 

Let R be a commutative ring with identity. Prove that multiplication is 
distributive in R[z]. 


Show that x? — x has p distinct zeros in Zp, for any prime p. Conclude that 
therefore 
x? —x=2(x —1)(a@— 2)---(a@-— (p—1)). 


EXERCISES 285 


24. 


25. 
26. 
27. 


28. 


Let F be a ring and f(#) = ap + aya +--+: + a,x" be in Flax]. Define 
f'(x) =a, + 2agx +---+naynx"~! to be the derivative of f(z). 
(a) Prove that 
(f + 9)'(«) = f(z) + g'(a). 
Conclude that we can define a homomorphism of abelian groups D : 
Fla] + Fla] by (D(f(2)) = F(a). 
(b) Calculate the kernel of D if charF = 0. 
(c) Calculate the kernel of D if charF = p. 
(d) Prove that 
(f9)'(x) = f'(w)g(@) + f(x)g'(@). 
(e) Suppose that we can factor a polynomial f(x) € F [a] into linear factors, 
say 
f(x) = a(a — a1) (a — ag)-++ (a — ay). 
Prove that f(x) has no repeated factors if and only if f(x) and f’(z) 
are relatively prime. 
Let F' be a field. Show that F'[z] is never a field. 
Let R be an integral domain. Prove that R[x1,...,x,] is an integral domain. 


Let R be a commutative ring with identity. Show that R[x] has a subring R’ 
isomorphic to R. 


Let p(x) and q(x) be polynomials in R[a], where R is a commutative ring 
with identity. Prove that deg(p(x) + q(a)) < max(deg p(x), deg q(x)). 


Additional Exercises: Solving the Cubic and Quartic 
Equations 


1. 


Solve the general quadratic equation 


ax? +ba+c=0 


to obtain 
—b+ Vb? — 4ac 
2 = —__.. 
2a 


The discriminant of the quadratic equation A = b? — 4ac determines the 
nature of the solutions of the equation. If A > 0, the equation has two distinct 
real solutions. If A = 0, the equation has a single repeated real root. If A < 0, 
there are two distinct imaginary solutions. 


. Show that any cubic equation of the form 


vo +b? +cr+d=0 


can be reduced to the form y? + py + q = 0 by making the substitution 
x=y-—/3. 
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. Prove that the cube roots of 1 are given by 


-1+iv3 
w= ———_ 
2 
9 —l-iv3 
WwW SS 
2 
w=. 
. Make the substitution 
Ye ue 
3z 


for y in the equation y? + py +q = 0 and obtain two solutions A and B for z?. 


. Show that the product of the solutions obtained in (4) is —p?/27, deducing 


that VAB = —p/3. 


. Prove that the possible solutions for z in (4) are given by 


VA, wV A, wVA, VB, wvB, wVB 


and use this result to show that the three possible solutions for y are 


ie/ 4 oe ai ef 4 Pg 
een eae (ee Vi oF a? 


where 2 = 0,1, 2. 


. The discriminant of the cubic equation is 


3. 28 
Pp qd 
esa Pee ee. 
2 + 

Show that y? + py+q=0 


(a) has three real roots, at least two of which are equal, if A = 0. 
(b) has one real root and two conjugate imaginary roots if A > 0. 
(c) has three distinct real roots if A < 0. 


. Solve the following cubic equations. 


(a) 3 — 4a? + 11x + 30 =0 (c) 2 —34+2=0 
(b) 2 —32+5=0 (d) 2 +24+3=0 


. Show that the general quartic equation 


vt +axr? 4+ br? +cr +d=0 


can be reduced to 
y+ py’ +aytr=0 
by using the substitution « = y — a/4. 
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2 1 : 2 1 5 
yt ge] = ply —ayt | ge —7). 


11. Show that the right-hand side of (10) can be put in the form (my +k)? if and 
only if 


10. Show that 


1 
gq? — A(z —p) ( om r) =0. 
4 
12. From (11) obtain the resolvent cubic equation 
2° — pz? —4rz + (4pr —¢"*) = 0. 


Solving the resolvent cubic equation, put the equation found in (10) in the 
form 


2 
1 
(u?-+ 52) = (ny +6 
to obtain the solution of the quartic equation. 


13. Use this method to solve the following quartic equations. 


(a) at-—a?-37+2=0 (c) at — 227+ 4r-3=0 
(b) 24+ 23-722? -2+6=0 (d) 2* — 423 + 32? —52+2=0 


Sage Polynomial rings are very important for computational approaches to 
algebra, and so Sage makes it very easy to compute with polynomials, over 
rings, or over fields. And it is trivial to check if a polynomial is irreducible. 


18) 


Integral Domains 


One of the most important rings we study is the ring of integers. It was 
our first example of an algebraic structure: the first polynomial ring that 
we examined was Z/z]. We also know that the integers sit naturally inside 
the field of rational numbers, Q. The ring of integers is the model for all 
integral domains. In this chapter we will examine integral domains in general, 
answering questions about the ideal structure of integral domains, polynomial 
rings over integral domains, and whether or not an integral domain can be 


embedded in a field. 


18.1 Fields of Fractions 


Every field is also an integral domain; however, there are many integral 
domains that are not fields. For example, the integers Z are an integral 
domain but not a field. A question that naturally arises is how we might 
associate an integral domain with a field. There is a natural way to construct 
the rationals Q from the integers: the rationals can be represented as formal 
quotients of two integers. The rational numbers are certainly a field. In fact, 
it can be shown that the rationals are the smallest field that contains the 
integers. Given an integral domain D, our question now becomes how to 
construct a smallest field F containing D. We will do this in the same way 
as we constructed the rationals from the integers. 

An element p/q € Q is the quotient of two integers p and q; however, 
different pairs of integers can represent the same rational number. For 
instance, 1/2 = 2/4 = 3/6. We know that 

a Cc 


if and only if ad = bc. A more formal way of considering this problem is 
to examine fractions in terms of equivalence relations. We can think of 
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elements in Q as ordered pairs in Z x Z. A quotient p/q can be written 
as (p,q). For instance, (3,7) would represent the fraction 3/7. However, 
there are problems if we consider all possible pairs in Z x Z. There is no 
fraction 5/0 corresponding to the pair (5,0). Also, the pairs (3,6) and (2, 4) 
both represent the fraction 1/2. The first problem is easily solved if we 
require the second coordinate to be nonzero. The second problem is solved 
by considering two pairs (a,b) and (c,d) to be equivalent if ad = be. 

If we use the approach of ordered pairs instead of fractions, then we can 
study integral domains in general. Let D be any integral domain and let 


S = {(a,b):a,b€ Dand b# 0}. 
Define a relation on S' by (a,b) ~ (c,d) if ad = be. 


Lemma 18.1 The relation ~ between elements of S is an equivalence rela- 
tion. 


PROOF. Since D is commutative, ab = ba; hence, ~ is reflexive on D. 
Now suppose that (a,b) ~ (c,d). Then ad = be or cb = da. Therefore, 
(c,d) ~ (a,b) and the relation is symmetric. Finally, to show that the 
relation is transitive, let (a,b) ~ (c,d) and (c,d) ~ (e,f). In this case 
ad = bc and cf = de. Multiplying both sides of ad = bc by f yields 


afd = adf = bcf = bde = bed. 


Since D is an integral domain, we can deduce that af = be or (a,b) ~ (e, f). 


We will denote the set of equivalence classes on S' by Fp. We now need 
to define the operations of addition and multiplication on Fp. Recall how 
fractions are added and multiplied in Q: 


a c_ad+be. 
a meee | ae 
Ete Ae cq 

b d bd 


It seems reasonable to define the operations of addition and multiplication 
on F’p in a similar manner. If we denote the equivalence class of (a,b) € S by 
[a,b], then we are led to define the operations of addition and multiplication 
on F'p by 

(a, b] + [c, d] = [ad + bc, bd] 
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and 
(a, b] - [c, d] = [ac, bd], 


respectively. The next lemma demonstrates that these operations are inde- 
pendent of the choice of representatives from each equivalence class. 


Lemma 18.2 The operations of addition and multiplication on Fp are well- 
defined. 


PROOF. We will prove that the operation of addition is well-defined. The 
proof that multiplication is well-defined is left as an exercise. Let [a1, 61] = 
(a2, bg] and [c1, di] = [c2, dz]. We must show that 


[aydy + b1¢1, b1d1] = [azd2 + bacz, bod] 
or, equivalently, that 
(aid, + b1¢1)(bed2) = (b1d1)(agdz + boc2). 


Since [a1, 61] = [ae2, bg] and [c1, d1] = [c2, dz], we know that a bg = bya2 and 
cidg = d\cy. Therefore, 


(ad + b1c1)(bed2) = aydybedz + b1c1b2d2 
= aybodi dz + bybec1 de 
= byagdid2 + bybedic2 
= (b)d1)(a2d2 + b2c2). 


Lemma 18.3 The set of equivalence classes of S, Fp, under the equiva- 
lence relation ~, together with the operations of addition and multiplication 
defined by 


[a, 6] + [c, d] = [ad + be, bd] 
[a, b] - [c, d] = [ac, bd], 


is a field. 


Proor. The additive and multiplicative identities are [0,1] and [1, 1], re- 
spectively. To show that [0,1] is the additive identity, observe that 


[a, 6] + [0, 1] = [a1 + 60, b1] = [a, 8). 
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It is easy to show that [1,1] is the multiplicative identity. Let [a,b] € Fp 
such that a 4 0. Then [b,a] is also in Fp and |[a, }] - [b,a] = [1,1]; hence, 
[b, a] is the multiplicative inverse for [a,b]. Similarly, |—a, b] is the additive 
inverse of [a,b]. We leave as exercises the verification of the associative and 
commutative properties of multiplication in Fp. We also leave it to the 
reader to show that F’p is an abelian group under addition. 

It remains to show that the distributive property holds in Fp; however, 


[a, le, f] + [e, dle, f] = [ae, bf] + [ce, df] 
= [aedf + bf ce, bdf?] 
= [aed + bce, bdf] 
= [ade + bce, bdf] 


= ((a, 4] + [e, dle, 


and the lemma is proved. 


The field Fp in Lemma 18.3 is called the field of fractions or field of 
quotients of the integral domain D. 


Theorem 18.4 Let D be an integral domain. Then D can be embedded in 
a field of fractions Fp, where any element in Fp can be expressed as the 
quotient of two elements in D. Furthermore, the field of fractions Fp is 
unique in the sense that if E is any field containing D, then there exists 
a map ww: Fp > E giving an isomorphism with a subfield of E such that 
w(a) =a for all elements a € D. 


PROOF. We will first demonstrate that D can be embedded in the field Fp. 
Define a map ¢: D > Fp by ¢(a) = [a, 1]. Then for a and 6 in D, 


o(a + b) = [a+ 6, 1] = [a, 1] + [6,1] = o(a) + (0) 
and 
(ab) = [ab, 1] = [a, 1][b, 1] = d(a) (0); 
hence, ¢ is a homomorphism. To show that ¢ is one-to-one, suppose that 
g(a) = o(b). Then [a, 1] = [6,1], or a=al=1b=b. Finally, any element of 
Fp can be expressed as the quotient of two elements in D, since 
(a)[b(b)]~* = [a, 1][, > = [a, 1] - [1,4] = [a, 4). 


Now let E be a field containing D and define a map wy : Fp > E by 
w({a, b]) = ab~+. To show that 2 is well-defined, let [a1,b1] = [a2, ba]. Then 
aby = bja2. Therefore, ayby* = agby* and (a1, b1]) = W({a2, be]). 
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If [a,b] and [c,d] are in Fp, then 


%([a, 6] + [e, d]) = v([ad + be, bd) 
= (ad + be)(bd)~" 
=ab-'+cd7' 
= ([a, 8) + ¥([c, d]) 


and 


%([a, 8] - [c,d]) = ¥([ac, bd]) 
= (ac)(bd) + 
=ab-‘cd7} 


= V([a, Ov ([c, d]). 


Therefore, ~ is a homomorphism. 

To complete the proof of the theorem, we need to show that w is one-to- 
one. Suppose that 7)({a, b]) = ab-! = 0. Then a = 0b = 0 and [a,b] = (0, d]. 
Therefore, the kernel of w is the zero element [0,}] in Fp, and ~ is injective. 


Example 1. Since Q is a field, Q/z] is an integral domain. The field 
of fractions of Q[z] is the set of all rational expressions p(x)/q(«), where 
p(x) and q(x) are polynomials over the rationals and q(x) is not the zero 
polynomial. We will denote this field by Q(z). | 


We will leave the proofs of the following corollaries of Theorem 18.4 as 
exercises. 


Corollary 18.5 Let F be a field of characteristic zero. Then F' contains a 
subfield isomorphic to Q. 


Corollary 18.6 Let F' be a field of characteristic p. Then F contains a 
subfield isomorphic to Zp. 


18.2 Factorization in Integral Domains 


The building blocks of the integers are the prime numbers. If F is a field, 
then irreducible polynomials in F'[x] play a role that is very similar to that 
of the prime numbers in the ring of integers. Given an arbitrary integral 
domain, we are led to the following series of definitions. 
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Let R be a commutative ring with identity, and let a and b be elements 
in R. We say that a divides b, and write a | b, if there exists an element 
c€ R such that b=ac. A unit in R is an element that has a multiplicative 
inverse. Two elements a and b in F are said to be associates if there exists 
a unit u in R such that a = ub. 

Let D be an integral domain. A nonzero element p € D that is not a 
unit is said to be irreducible provided that whenever p = ab, either a or b 
is a unit. Furthermore, p is prime if whenever p | ab either p|a or p | b. 


Example 2. It is important to notice that prime and irreducible elements do 
not always coincide. Let R be the subring (with identity) of Q/z, y] generated 
by x”, y*, and wy. Each of these elements is irreducible in R; however, xy is 
not prime, since xy divides x7y? but does not divide either x? or y?. | 


The Fundamental Theorem of Arithmetic states that every positive integer 
n > 1 can be factored into a product of prime numbers pj, --- px, where the 
p;'s are not necessarily distinct. We also know that such factorizations 
are unique up to the order of the p;’s. We can easily extend this result 
to the integers. The question arises of whether or not such factorizations 
are possible in other rings. Generalizing this definition, we say an integral 
domain D is a unique factorization domain, or UFD, if D satisfies the 
following criteria. 


1. Let a € D such that a £0 and a is not a unit. Then a can be written 
as the product of irreducible elements in D. 


2. Let a = pi --: Pr = G1-++ Qs, where the p;’s and the q;’s are irreducible. 
Then r = s and there is a 7 € S; such that p; and q,(;) are associates 
for j =1,...,7r. 


Example 3. The integers are a unique factorization domain by the Funda- 
mental Theorem of Arithmetic. a 


Example 4. Not every integral domain is a unique factorization domain. The 
subring Z[/37] = {a + bV/3i} of the complex numbers is an integral domain 
(Exercise 12, Chapter 16). Let z = a+bV3i and define v : Z[V3i] > NU {0} 
by v(z) = |z|? = a? + 302. It is clear that v(z) > 0 with equality when 
z =0. Also, from our knowledge of complex numbers we know that v(zw) = 
v(z)v(w). It is easy to show that if v(z) = 1, then z is a unit, and that the 
only units of Z[V3%] are 1 and —1. 
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We claim that 4 has two distinct factorizations into irreducible elements: 
4=2-2=(1-— V3i)(14+ V3). 


We must show that each of these factors is an irreducible element in Z[y/3 i]. 
If 2 is not irreducible, then 2 = zw for elements z,w in Z[V/3i] where 
v(z) = v(w) = 2. However, there does not exist an element in z in Z[V/3 4] 
such that v(z) = 2 because the equation a? + 3b? = 2 has no integer solutions. 
Therefore, 2 must be irreducible. A similar argument shows that both 1— /3i 
and 1+ V3 are irreducible. Since 2 is not a unit multiple of either 1 — J3i 
or 1+/3i, 4 has at least two distinct factorizations into irreducible elements. 

a 


Principal Ideal Domains 


Let R be a commutative ring with identity. Recall that a principal ideal 
generated by a € R is an ideal of the form (a) = {ra: r € R}. An integral 
domain in which every ideal is principal is called a principal ideal domain, 
or PID. 


Lemma 18.7 Let D be an integral domain and let a,b € D. Then 
Ly a | DSO ta): 
2. a and b are associates <= (b) = (a). 
3. a is a unit in DS (a) =D. 


PrRooF. (1) Suppose that a |b. Then b = az for some x € D. Hence, for 
every r in D, br = (ax)r = a(azr) and (b) C (a). Conversely, suppose that 
(b) C (a). Then b € (a). Consequently, b = ax for some x € D. Thus, a | b. 

(2) Since a and b are associates, there exists a unit wu such that a = ub. 
Therefore, b | a and (a) C (b). Similarly, (b) C (a). It follows that (a) = (0). 
Conversely, suppose that (a) = (b). By part (1), a| 6 and b| a. Then a = br 
and b = ay for some z,y € D. Therefore, a = bx = ayx. Since D is an 
integral domain, ry = 1; that is, x and y are units and a and 6 are associates. 

(3) An element a € D is a unit if and only if a is an associate of 1. 
However, a is an associate of 1 if and only if (a) = (1) = D. 


Theorem 18.8 Let D be a PID and (p) be a nonzero ideal in D. Then (p) 
is a maximal ideal if and only if p is irreducible. 
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PROOF. Suppose that (p) is a maximal ideal. If some element a in D 
divides p, then (p) C (a). Since (p) is maximal, either D = (a) or (p) = (a). 
Consequently, either a and p are associates or a is a unit. Therefore, p is 
irreducible. 

Conversely, let p be irreducible. If (a) is an ideal in D such that (p) C 
(a) C D, then a | p. Since p is irreducible, either a must be a unit or a 
and p are associates. Therefore, either D = (a) or (p) = (a). Thus, (p) isa 
maximal ideal. 


Corollary 18.9 Let D be a PID. If p is irreducible, then p is prime. 


ProoF. Let p be irreducible and suppose that p | ab. Then (ab) C (p). By 
Corollary 16.18, since (p) is a maximal ideal, (p) must also be a prime ideal. 
Thus, either a € (p) or b € (p). Hence, either p | a or p| b. 


Lemma 18.10 Let D be a PID. Let I,,Io,... be a set of ideals such that 
I, Clg cC.:-:-. Then there exists an integer N such that I, = In for all 
n>N. 


Proor. We claim that J = U~, J; is an ideal of D. Certainly I is not empty, 
since 1) CT andO cl. Ifa,be€ I, thena c€ J; and b € J; for some 7 and 7 in 
N. Without loss of generality we can assume that i < 7. Hence, a and b are 
both in J; and so a — 6 is also in I;. Now let r€ Dandaeé J. Again, we 
note that a € J; for some positive integer 7. Since J; is an ideal, ra € J; and 
hence must be in J. Therefore, we have shown that J is an ideal in D. 
Since D is a principal ideal domain, there exists an element @ € D that 
generates J. Since @ is in Iy for some N €N, we know that Ij =I = (@). 
Consequently, [, = Iy forn > N. 


Any commutative ring satisfying the condition in Lemma 18.10 is said 
to satisfy the ascending chain condition, or ACC. Such rings are called 
Noetherian rings, after Emmy Noether. 


Theorem 18.11 Every PID is a UFD. 


PROOF. Existence of a factorization. Let D be a PID and a be a nonzero 
element in D that is not a unit. If a is irreducible, then we are done. If not, 
then there exists a factorization a = a,b,, where neither a; nor 6, is a unit. 
Hence, (a) C (a1). By Lemma 18.7, we know that (a) 4 (a1); otherwise, a 
and a; would be associates and b; would be a unit, which would contradict 
our assumption. Now suppose that a; = agb2, where neither a2 nor bg is a 
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unit. By the same argument as before, (a1) C (a2). We can continue with 
this construction to obtain an ascending chain of ideals 


(a) C (a1) C (ag) Cee. 


By Lemma 18.10, there exists a positive integer N such that (a,) = (ay) for 
all n > N. Consequently, ay must be irreducible. We have now shown that 
a is the product of two elements, one of which must be irreducible. 

Now suppose that a = cyp,, where 7, is irreducible. If cy is not a unit, 
we can repeat the preceding argument to conclude that (a) C (c1). Either 
c1 is irreducible or cy = cgp2, where pg is irreducible and cz is not a unit. 
Continuing in this manner, we obtain another chain of ideals 


(a) C (ey) C te) Cees 
This chain must satisfy the ascending chain condition; therefore, 


a= Pip2::* Pr 


for irreducible elements p,,..., Dr. 
Uniqueness of the factorization. To show uniqueness, let 


a = Pip2*** Pr = 192°°° Ws; 


where each p; and each q is irreducible. Without loss of generality, we can 
assume that r < s. Since p; divides qiqg2---qs, by Corollary 18.9 it must 
divide some q;. By rearranging the q;’s, we can assume that pi | qi; hence, 
qi = u,p1 for some unit vu, in D. Therefore, 


a = Pip2*** Pr = U1P1q2° °° ds 


or 
p2°** Pr = U1g2°°* ds- 

Continuing in this manner, we can arrange the q;’s such that po = qo, p3 = 

93,-++,Pr =r; to obtain 


U1U2*** UrGrt1°*'ds = lL. 


In this case gr+1°--qs is a unit, which contradicts the fact that gri1,..-,ds 
are irreducibles. Therefore, r = s and the factorization of a is unique. 


Corollary 18.12 Let F be a field. Then F|x] is a UFD. 
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Example 5. Every PID is a UFD, but it is not the case that every UFD 
is a PID. In Corollary 18.22, we will prove that Z[z] is a UFD. However, 
Z\x] is not a PID. Let J = {5f(x) + xg(x) : f(x), g(x) € Zlx]}. We can 
easily show that J is an ideal of Z[xz]. Suppose that J = (p(x)). Since 5 € J, 
5 = f(x)p(x). In this case p(x) = p must be a constant. Since x € TJ, 
x = pg(x); consequently, p = +1. However, it follows from this fact that 
(p(x)) = Z[x]. But this would mean that 3 is in J. Therefore, we can write 
3 = 5f(x) + xg(x) for some f(x) and g(x) in Z[x]. Examining the constant 
term of this polynomial, we see that 3 = 5f(a), which is impossible. | 


Euclidean Domains 


We have repeatedly used the division algorithm when proving results about 
either Z or Fa], where F is a field. We should now ask when a division 
algorithm is available for an integral domain. 

Let D be an integral domain such that for each a € D there is a nonneg- 
ative integer v(a) satisfying the following conditions. 


1. If a and b are nonzero elements in D, then v(a) < v(ab). 


2. Let a,b € D and suppose that b ~£ 0. Then there exist elements 
q,r € D such that a = bq+r and either r = 0 or v(r) < V(b). 


Then D is called a Euclidean domain and v is called a Euclidean valu- 
ation. 


Example 6. Absolute value on Z is a Euclidean valuation. | 


Example 7. Let F' be a field. Then the degree of a polynomial in F'[z] is a 
Euclidean valuation. | 


Example 8. Recall that the Gaussian integers in Example 9 of Chapter 16 
are defined by 
Z|t] = {a+ bi: a,be Z}. 


We usually measure the size of a complex number a+ 07 by its absolute 
value, |a + bi| = Va? + b?; however, Va? + b? may not be an integer. For our 
valuation we will let v(a + bi) = a? + b? to ensure that we have an integer. 

We claim that v(a + bi) = a? + b? is a Euclidean valuation on Z[i]. Let 
z,w € Zi]. Then v(zw) = |zw|? = |z|?|w|? = v(z)v(w). Since v(z) > 1 for 
every nonzero z € Zi], v(z) = v(z)v(w). 
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Next, we must show that for any z = a+ bi and w = c+ di in Zii| 
with w 4 0, there exist elements gq and r in Z[i] such that z = qu+r 
with either r = 0 or v(r) < v(w). We can view z and w as elements in 
Q(i) = {p+ qi: p,q € Q}, the field of fractions of Z|]. Observe that 


4 x C= dt 
ZW = (a+ bi) a7 


ac+bd | be—ad, 
Page. aap 


ia a 
IT 24 aT OTe 


= (m+ mai) + ( ce eee ) 


a 
C+ e&+d 
= (m1 + moi) + (s + tt) 
in Q(t). In the last steps we are writing the real and imaginary parts as an 


integer plus a proper fraction. That is, we take the closest integer m,; such 
that the fractional part satisfies |n;/(a? + b*)| < 1/2. For example, we write 


9 1 
ies enon 
8 ag 
15 1 
—~=2-2, 
8 8 


Thus, s and ¢ are the “fractional parts” of zw~! = (m, + mgi) + (s+ti). We 
also know that s? + t? < 1/4+1/4=1/2. Multiplying by w, we have 


z= zw tw = w(m, + mi) + w(s + ti) = qu +r, 


where g = m1 +mgi and r = w(s+ti). Since z and qw are in Zi], r must be 
in Z|2]. Finally, we need to show that either r = 0 or v(r) < v(w). However, 


Theorem 18.13 Every Euclidean domain is a principal ideal domain. 


ProoF. Let D be a Euclidean domain and let v be a Euclidean valuation 
on D. Suppose J is a nontrivial ideal in D and choose a nonzero element 
b € I such that v(b) is minimal for all a € I. Since D is a Euclidean domain, 
there exist elements q and r in D such that a = bq+r and either r = 0 or 
v(r) < v(b). But r = a — bg is in I since I is an ideal; therefore, r = 0 by 
the minimality of b. It follows that a = bq and I = (b). 
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Corollary 18.14 Every Euclidean domain is a unique factorization domain. 


Factorization in D{z] 


One of the most important polynomial rings is Z|]. One of the first questions 
that come to mind about Z[x] is whether or not it is a UFD. We will prove 
a more general statement here. Our first task is to obtain a more general 
version of Gauss’s Lemma (Theorem 17.9). 

Let D be a unique factorization domain and suppose that 


p(@) = on2”" +++ + aye + ap 


in D[x]. Then the content of p(x) is the greatest common divisor of 
@0,--+;@n. We say that p(x) is primitive if gcd(ao,...,a@n) = 1. 


Example 9. In Z/z] the polynomial p(x) = 524 — 323 + a — 4 is a primitive 
polynomial since the greatest common divisor of the coefficients is 1; however, 
the polynomial q(a) = 4x? — 62 + 8 is not primitive since the content of q(x) 
is 2. a 


Theorem 18.15 (Gauss’s Lemma) Let D be a UFD and let f(x) and 
g(x) be primitive polynomials in D[{x]. Then f(x)g(x) is primitive. 


ProorF. Let f(x) = 7, az’ and g(z) = >.) iz. Suppose that p is a 
prime dividing the coefficients of f(x)g(a). Let r be the smallest integer 
such that p Ja, and s be the smallest integer such that p/b,. The coefficient 
of x"t§ in f(x)g(z) is 


Cres = A0bp+5 + Aybp4s—1 +++ + Ap4s—1b1 + Ap4sbo. 


Since p divides ao,...,@,—1 and bo,...,bs_1, p divides every term of c+, 
except for the term a,;b,. However, since p | c,+5, either p divides a, or p 
divides b,. But this is impossible. 


Lemma 18.16 Let D be a UFD, and let p(x) and q(x) be in D[x]. Then the 
content of p(x)q(x) is equal to the product of the contents of p(x) and q(x). 


Proor. Let p(x) = cpi(x) and q(x) = dqi(x), where c and d are the contents 
of p(x) and q(x), respectively. Then p;(x) and qi(a) are primitive. We 
can now write p(x)q(x) = cdpi(x)qi(x). Since pi(x)qi(x) is primitive, the 
content of p(x)q(x) must be cd. 
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Lemma 18.17 Let D be a UFD and F its field of fractions. Suppose 
that p(x) € Diz] and p(x) = f(x)g(x), where f(x) and g(x) are in Fiz}. 
Then p(x) = fi(x)gi(x), where fi(x) and gi(x) are in D[x]. Furthermore, 
deg f(x) = deg fi(x) and deg g(x) = deg 91 (2). 


ProoF. Let a and b be nonzero elements of D such that af(x), bg(x) are 
in D{x]. We can find a1,b2 € D such that af(x) = aifi(x) and bg(x) = 
bigi(x), where f;(x) and gi(x) are primitive polynomials in D[z]. Therefore, 
abp(a) = (a1 fi(x))(b1g1(x)). Since fi (x) and gi(x) are primitive polynomials, 
it must be the case that ab | a,b; by Gauss’s Lemma. Thus there exists 
ac € D such that p(x) = cfi(x)gi(x). Clearly, deg f(x) = deg fi (x) and 
deg g(x) = deg gi (x). 


The following corollaries are direct consequences of Lemma 18.17. 


Corollary 18.18 Let D be a UFD and F its field of fractions. A primitive 
polynomial p(x) in D[a] is irreducible in Fx] if and only if it is irreducible 
in Dx. 


Corollary 18.19 Let D be a UFD and F its field of fractions. If p(x) is 
a monic polynomial in D{x] with p(x) = f(x)g(x) in Fla], then p(x) = 
fi(x)gi(x), where fi(x) and gi(x) are in Dix]. Furthermore, deg f(x) = 
deg fi(x) and deg g(x) = deg gi(z). 


Theorem 18.20 /f D is a UFD, then D{x] is a UFD. 


ProoFr. Let p(a) be a nonzero polynomial in D[z]. If p(x) is a constant 
polynomial, then it must have a unique factorization since D is a UFD. Now 
suppose that p(x) is a polynomial of positive degree in D{x]. Let F' be the 
field of fractions of D, and let p(x) = fi (x) fo(x)--- f(x) by a factorization 
of p(x), where each f;(x) is irreducible. Choose a; € D such that a;fj(x) is in 
D{z]. There exist b1,...,b, € D such that a;f;(x) = big;(x), where g;(x) is 
a primitive polynomial in D[z]. By Corollary 18.18, each g;(x) is irreducible 
in D[z]. Consequently, we can write 


ay:: - An p(x) =b,-: -bngi (x) oF -Gn(x). 


Let b = by --+ by. Since gi(x) +++ gn(x) is primitive, a, ---a, divides b. There- 

fore, p(x) = agi(x)--- gn(x), where a € D. Since D is a UFD, we can factor 

a as uc, ++: Cz, where wu is a unit and each of the c;’s is irreducible in D. 
We will now show the uniqueness of this factorization. Let 


p(x) =ai"" -Amfi(x) a Fale) = by ne - bpgi (x) a -Js(X) 
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be two factorizations of p(a), where all of the factors are irreducible in D[z]. 
By Corollary 18.18, each of the f;’s and g;’s is irreducible in F'[z]. The a,’s 
and the b;’s are units in F’. Since F[z] is a PID, it is a UFD; therefore, 
n = s. Now rearrange the gi(x)’s so that fi(a) and gi(a) are associates 
for 2 = 1,...,n. Then there exist cj,...,¢, and dj,...,d, in D such that 
(ci/di) fi(x) = gi(x) or a fi(x) = digi(x). The polynomials f;(x) and g;(x) are 
primitive; hence, c; and d; are associates in D. Thus, a1 --- @m, = ub, --- 6b, in 
D, where u is a unit in D. Since D is a unique factorization domain, m = s. 
Finally, we can reorder the b;’s so that a; and b; are associates for each 7. 
This completes the uniqueness part of the proof. 


The theorem that we have just proven has several obvious but important 
corollaries. 


Corollary 18.21 Let F be a field. Then F |x] is a UFD. 
Corollary 18.22 Z{z] is a UFD. 
Corollary 18.23 Let D be a UFD. Then D[x1,...,%p] is a UFD. 


Remark. It is important to notice that every Euclidean domain is a PID 
and every PID is a UFD. However, as demonstrated by our examples, the 
converse of each of these statements fails. There are principal ideal domains 
that are not Euclidean domains, and there are unique factorization domains 
that are not principal ideal domains (Z[z]). 


Historical Note 


Karl Friedrich Gauss, born in Brunswick, Germany on April 30, 1777, is 
considered to be one of the greatest mathematicians who ever lived. Gauss 
was truly a child prodigy. At the age of three he was able to detect errors 
in the books of his father’s business. Gauss entered college at the age of 15. 
Before the age of 20, Gauss was able to construct a regular 17-sided polygon 
with a ruler and compass. This was the first new construction of a regular 
n-sided polygon since the time of the ancient Greeks. Gauss succeeded in 
showing that if N = 2?" + 1 was prime, then it was possible to construct a 
regular N-sided polygon. 

Gauss obtained his Ph.D. in 1799 under the direction of Pfaff at the 
University of Helmstedt. In his dissertation he gave the first complete proof 
of the Fundamental Theorem of Algebra, which states that every polynomial 
with real coefficients can be factored into linear factors over the complex 
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numbers. The acceptance of complex numbers was brought about by Gauss, 
who was the first person to use the notation of 7 for /—1. 

Gauss then turned his attention toward number theory; in 1801, he 
published his famous book on number theory, Disquisitiones Arithmeticae. 
Throughout his life Gauss was intrigued with this branch of mathematics. 
He once wrote, “Mathematics is the queen of the sciences, and the theory of 
numbers is the queen of mathematics.” 

In 1807, Gauss was appointed director of the Observatory at the University 
of Gottingen, a position he held until his death. This position required him 
to study applications of mathematics to the sciences. He succeeded in making 
contributions to fields such as astronomy, mechanics, optics, geodesy, and 
magnetism. Along with Wilhelm Weber, he coinvented the first practical 
electric telegraph some years before a better version was invented by Samuel 
F. B. Morse. 

Gauss was clearly the most prominent mathematician in the world in the 
early nineteenth century. His status naturally made his discoveries subject 
to intense scrutiny. Gauss’s cold and distant personality many times led him 
to ignore the work of his contemporaries, making him many enemies. He 
did not enjoy teaching very much, and young mathematicians who sought 
him out for encouragement were often rebuffed. Nevertheless, he had many 
outstanding students, including Eisenstein, Riemann, Kummer, Dirichlet, 
and Dedekind. Gauss also offered a great deal of encouragement to Sophie 
Germain (1776-1831), who overcame the many obstacles facing women in 
her day to become a very prominent mathematician. Gauss died at the age 
of 78 in Gottingen on February 23, 1855. 


Exercises 


1. Let z =a+bdvV3i be in Z[V3 i]. If a? + 3b? = 1, show that z must be a unit. 
Show that the only units of Z[/37] are 1 and —1. 


2. The Gaussian integers, Z|], are a UFD. Factor each of the following elements 
in Z[i] into a product of irreducibles. 


(a) 5 (c) 6+8i 
(b) 1+ 3% (d) 2 


3. Let D be an integral domain. 


(a) Prove that Fp is an abelian group under the operation of addition. 
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(b) Show that the operation of multiplication is well-defined in the field of 
fractions, F’p. 


(c) Verify the associative and commutative properties for multiplication in 
Fp. 
4. Prove or disprove: Any subring of a field F’ containing 1 is an integral domain. 


5. Prove or disprove: If D is an integral domain, then every prime element in D 
is also irreducible in D. 


6. Let F be a field of characteristic zero. Prove that F' contains a subfield 
isomorphic to Q. 


7. Let F be a field. 


(a) Prove that the field of fractions of F'[x], denoted by F(x), is isomorphic 
to the set all rational expressions p(x)/q(x), where q(x) is not the zero 


polynomial. 

(b) Let p(a1,...,@n) and q(a1,...,%n) be polynomials in F[a1,...,2y]. 
Show that the set of all rational expressions p(21,...,@n)/q(@1,---;%n) 
is isomorphic to the field of fractions of F[x1,...,@n]. We denote the 


field of fractions of F'[21,...,@,] by F(a1,...,2n). 


8. Let p be prime and denote the field of fractions of Z,[x] by Z,(x). Prove that 
Z,(x) is an infinite field of characteristic p. 


9. Prove that the field of fractions of the Gaussian integers, Z/i], is 
Qt) = {p+ qi: p,q € Qh. 


10. A field F is called a prime field if it has no proper subfields. If EF is a 
subfield of F and F is a prime field, then E is a prime subfield of F. 
(a) Prove that every field contains a unique prime subfield. 


(b) If F is a field of characteristic 0, prove that the prime subfield of F' is 
isomorphic to the field of rational numbers, Q. 


(c) If F is a field of characteristic p, prove that the prime subfield of F is 
isomorphic to Zp. 
11. Let Z[V2] = {a + bV2: a,b € Z}. 


(a) Prove that Z[/2] is an integral domain. 

(b) Find all of the units in Z[V2]. 

(c) Determine the field of fractions of Z[V/2]. 

(d) Prove that Z[\/2i] is a Euclidean domain under the Euclidean valuation 
v(a + bV2%) = a? + 267. 
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Let D be a UFD. An element d € D is a greatest common divisor of a 
and b in D if d| a and d| 6 and d is divisible by any other element dividing 
both a and b. 


(a) If D is a PID and a and 6 are both nonzero elements of D, prove there 
exists a unique greatest common divisor of a and b up to associates. 
That is, if d and d’ are both greatest common divisors of a and b, then 
d and d’ are associates. We write gcd(a,b) for the greatest common 
divisor of a and b. 

(b) Let D be a PID and a and b be nonzero elements of D. Prove that there 
exist elements s and ¢ in D such that gced(a, b) = as + bt. 


Let D be an integral domain. Define a relation on D by a ~ b if a and b are 
associates in D. Prove that ~ is an equivalence relation on D. 


Let D be a Euclidean domain with Euclidean valuation v. If u is a unit in D, 
show that v(u) = (1). 

Let D be a Euclidean domain with Euclidean valuation v. If a and b are 
associates in D, prove that v(a) = v(b). 


Show that Z[V/57] is not a unique factorization domain. 
Prove or disprove: Every subdomain of a UFD is also a UFD. 


An ideal of a commutative ring R is said to be finitely generated if there 
exist elements a,,...,@, in R such that every element r € R can be written 
as airy +--+: + Gnrn for some r1,...,7n in R. Prove that R satisfies the 
ascending chain condition if and only if every ideal of R is finitely generated. 


Let D be an integral domain with a descending chain of ideals I, D> Ig D 
Iz > ---. Suppose that there exists an N such that J, = In for allk > N. 
A ring satisfying this condition is said to satisfy the descending chain 
condition, or DCC. Rings satisfying the DCC are called Artinian rings, 
after Emil Artin. Show that if D satisfies the descending chain condition, it 
must satisfy the ascending chain condition. 


Let R be a commutative ring with identity. We define a multiplicative 
subset of R to be a subset S such that 1 € S and abe S ifa,bE S. 


(a) Define a relation ~ on R x S by (a, s) ~ (a’, s’) if there exists an s* € S 
such that s*(s’a — sa’) = 0. Show that ~ is an equivalence relation on 
RxS. 


(b) Let a/s denote the equivalence class of (a, s) € R x S and let S~'R be 
the set of all equivalence classes with respect to ~. Define the operations 
of addition and multiplication on S~'R by 

ab at+bs 
s t st 
ab ab 
st st’ 
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respectively. Prove that these operations are well-defined on S~!R and 
that S~1R is a ring with identity under these operations. The ring 
SR is called the ring of quotients of R with respect to S. 


Show that the map w : R > S~!R defined by W(a) = a/1 is a ring 
homomorphism. 

If R has no zero divisors and 0 ¢ S', show that w is one-to-one. 

Prove that P is a prime ideal of R if and only if S = R\ Pisa 
multiplicative subset of R. 


If P is a prime ideal of R and S = R\ P, show that the ring of quotients 
S~+R has a unique maximal ideal. Any ring that has a unique maximal 
ideal is called a local ring. 
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Sage Sage supports distinctions between “plain” rings, domains, principal 
ideal domains and fields. Support is often very good for constructions and 
computations with PID’s, but sometimes problems get significantly harder 
(computationally) when a ring has less structure that that of a PID. So be 
aware when using Sage that some questions may go unanswered for rings 
with less structure. 


19] 


Lattices and Boolean 
Algebras 


The axioms of a ring give structure to the operations of addition and multi- 
plication on a set. However, we can construct algebraic structures, known as 
lattices and Boolean algebras, that generalize other types of operations. For 
example, the important operations on sets are inclusion, union, and intersec- 
tion. Lattices are generalizations of order relations on algebraic spaces, such 
as set inclusion in set theory and inequality in the familiar number systems 
N, Z, Q, and R. Boolean algebras generalize the operations of intersection 
and union. Lattices and Boolean algebras have found applications in logic, 
circuit theory, and probability. 


19.1 Lattices 


Partially Ordered Sets 


We begin by the study of lattices and Boolean algebras by generalizing the 
idea of inequality. Recall that a relation on a set X is a subset of X x X. 
A relation P on X is called a partial order of X if it satisfies the following 
axioms. 


1. The relation is reflexive: (a,a) € P for alla ec X. 


2. The relation is antisymmetric: if (a,b) € P and (b,a) € P, then 
a= b. 


3. The relation is transitive: if (a,b) € P and (b,c) € P, then (a,c) € P. 
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We will usually write a < b to mean (a,b) € P unless some symbol is naturally 
associated with a particular partial order, such as a < b with integers a and 
b, or X CY with sets X and Y. A set X together with a partial order ~ is 
called a partially ordered set, or poset. 


Example 1. The set of integers (or rationals or reals) is a poset where a < b 
has the usual meaning for two integers a and b in Z. a 


Example 2. Let X be any set. We will define the power set of X to be 
the set of all subsets of X. We denote the power set of X by P(X). For 
example, let X = {a,b,c}. Then P(X) is the set of all subsets of the set 


{a, b,c}: 
0 {a} {bd} {c} 
{a,b} {a,c} {b,c} {a,b,c}. 
On any power set of a set X, set inclusion, C, is a partial order. We can 


represent the order on {a,b,c} schematically by a diagram such as the one 
in Figure 19.1. a 


{0,0} 


can 


{a,b} {a,c} {b,c} 
ye 

{o}  { 
Sly" 


{a} cH 


Figure 19.1. Partial order on P({a, b, c}) 


Example 3. Let G be a group. The set of subgroups of G is a poset, where 
the partial order is set inclusion. | 


Example 4. There can be more than one partial order on a particular set. 
We can form a partial order on N by a X 6 if a| b. The relation is certainly 
reflexive since a | a for alla E N. If m|n and n|m, then m =n; hence, the 
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relation is also antisymmetric. The relation is transitive, because if m | n 
and n | p, then m | p. | 


Example 5. Let X = {1,2,3,4,6,8, 12, 24} be the set of divisors of 24 with 
the partial order defined in Example 4. Figure 19.2 shows the partial order 
on X. a 


Figure 19.2. A partial order on the divisors of 24 


Let Y be a subset of a poset X. An element u in X is an upper bound 
of Y if a X u for every element a € Y. If u is an upper bound of Y such that 
u ~ v for every other upper bound v of Y, then uw is called a least upper 
bound or supremum of Y. An element / in X is said to be a lower bound 
of Y if! x a for alla € Y. If 1 is a lower bound of Y such that k ~ I for 
every other lower bound k of Y, then / is called a greatest lower bound 
or infimum of Y. 


Example 6. Let Y = {2,3,4,6} be contained in the set X of Example 5. 
Then Y has upper bounds 12 and 24, with 12 as a least upper bound. The 
only lower bound is 1; hence, it must be a greatest lower bound. | 


As it turns out, least upper bounds and greatest lower bounds are unique 
if they exist. 


Theorem 19.1 Let Y be a nonempty subset of a poset X. If Y has a least 
upper bound, then Y has a unique least upper bound. If Y has a greatest 
lower bound, then Y has a unique greatest lower bound. 
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PROOF. Let u; and ue be least upper bounds for Y. By the definition of 
the least upper bound, wu; x u for all upper bounds u of Y. In particular, 
uy X ug. Similarly, wg < u,. Therefore, uy = ug by antisymmetry. A similar 
argument show that the greatest lower bound is unique. 


On many posets it is possible to define binary operations by using the 
greatest lower bound and the least upper bound of two elements. A lattice 
is a poset L such that every pair of elements in DL has a least upper bound 
and a greatest lower bound. The least upper bound of a,b € L is called the 
join of a and b and is denoted by aV b. The greatest lower bound of a,b € L 
is called the meet of a and 6 and is denoted by aA b. 


Example 7. Let X be a set. Then the power set of X, P(X), is a lattice. 
For two sets A and B in P(X), the least upper bound of A and B is AU B. 
Certainly AU B is an upper bound of A and B, since A C AUB and 
BCAUB. If C is some other set containing both A and B, then C must 
contain AU B; hence, AU B is the least upper bound of A and B. Similarly, 
the greatest lower bound of A and B is AN B. | 


Example 8. Let G be a group and suppose that X is the set of subgroups 
of G. Then X is a poset ordered by set-theoretic inclusion, C. The set of 
subgroups of G is also a lattice. If H and K are subgroups of G, the greatest 
lower bound of H and K is HN K. The set H UK may not be a subgroup 
of G. We leave it as an exercise to show that the least upper bound of H 
and K is the subgroup generated by HU K. | 


In set theory we have certain duality conditions. For example, by De 
Morgan’s laws, any statement about sets that is true about (AU B)/ must 
also be true about A’M B’. We also have a duality principle for lattices. 


Principle of Duality. Any statement that is true for all lattices remains 
true when ~ is replaced by = and V and A are interchanged throughout the 
statement. 


The following theorem tells us that a lattice is an algebraic structure 
with two binary operations that satisfy certain axioms. 


Theorem 19.2 Jf L is a lattice, then the binary operations V and (A satisfy 
the following properties for a,b,c € L. 


1. Commutative laws: aVb=bVa anda\b=bAa. 


2. Associative laws: aV (bV cc) = (aV b) Vc andad (bAc) =(aAb)Ac. 
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3. Idempotent laws: aVa=a anda\a=a. 


4. Absorption laws: aV (aA b) =a anda (aV b) =a. 


PROOF. By the Principle of Duality, we need only prove the first statement 
in each part. 

(1) By definition a V b is the least upper bound of {a,b}, and bV a is the 
least upper bound of {b, a}; however, {a,b} = {b, a}. 

(2) We will show that a V (bV c) and (a V b) Vc are both least upper 
bounds of {a, b,c}. Let d=aVb. Then c Xx dV c= (aVb)Vc. We also know 
that 

ExsvaevoHjdadVe=lavnnv & 


A similar argument demonstrates that b x (a V b) Vc. Therefore, (a V b) Vc 
is an upper bound of {a,b,c}. We now need to show that (a V b) Vc is the 
least upper bound of {a,b,c}. Let uw be some other upper bound of {a,b,c}. 
Then a x u and b X u; hence, d=aVb~ u. Since c X u, it follows that 
(aV b)Ve=dVcxXu. Therefore, (a V b) V c must be the least upper bound 
of {a,b,c}. The argument that shows a V (b V c) is the least upper bound of 
{a,b,c} is the same. Consequently, a V (bV c) = (aV b) Vc. 

(3) The join of a and a is the least upper bound of {a}; hence, aV a =a. 

(4) Let d=aAb. Then a x aVd. On the other hand, d= a/b = a, and 
soaVd-~<a. Therefore, a V (aA b) =a. 


Given any arbitrary set D with operations V and A, satisfying the condi- 
tions of the previous theorem, it is natural to ask whether or not this set 
comes from some lattice. The following theorem says that this is always the 
case. 


Theorem 19.3 Let L be a nonempty set with two binary operations V and 
A satisfying the commutative, associative, idempotent, and absorption laws. 
We can define a partial order on L byaxbifaVb=b. Furthermore, L is 
a lattice with respect to < if for alla,b © L, we define the least upper bound 
and greatest lower bound of a and b by aV b and a/b, respectively. 


PROOF. We first show that L is a poset under <x. SinceaVa=a,axa 
and ~ is reflexive. To show that ~ is antisymmetric, let a < b and b ~ a. 
Then aVb= band bVa=a. By the commutative law, b=aVb=bVa=a. 
Finally, we must show that ~ is transitive. Let a x b and b x c. Then 
aVb=band bVc=c. Thus, 


EVE=]EV(6V C= VO) VeHiVeH=s 
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oraxc. 

To show that ZL is a lattice, we must prove that a V b and a/ 6 are, 
respectively, the least upper and greatest lower bounds of a and b. Since 
a=(aVb)Aa=aA (a\V d), it follows that a < aV b. Similarly, b x av b. 
Therefore, a V b is an upper bound for a and b. Let u be any other upper 
bound of both a and b. Then a < u and b x u. But aV b X wu since 


(OVO) V G=0V (OV 1 =4aVi=e 


The proof that a A b is the greatest lower bound of a and 6 is left as an 
exercise. 


19.2 Boolean Algebras 


Let us investigate the example of the power set, P(X), of a set X more 
closely. The power set is a lattice that is ordered by inclusion. By the 
definition of the power set, the largest element in P(X) is X itself and the 
smallest element is §, the empty set. For any set A in P(X), we know that 
ANX =Aand AUQ= A. This suggests the following definition for lattices. 
An element J in a poset X is a largest element if a x I for alla ¢ X. An 
element O is a smallest element of X if O <a for allac X. 
Let A be in P(X). Recall that the complement of A is 


A=X\A={ae: ceEX andz¢ A}. 


We know that AU A’ = X and AN A’ =. We can generalize this example 
for lattices. A lattice L with a largest element J and a smallest element O 
is complemented if for each a € X, there exists an a’ such that a V a! = I 
and aA a =O: 

In a lattice L, the binary operations V and A satisfy commutative and 
associative laws; however, they need not satisfy the distributive law 


aN (bVc) =(aAb)V (adc); 
however, in P(X) the distributive law is satisfied since 
AN(BUC) =(ANB)U(ANC) 


for A,B,C € P(X). We will say that a lattice L is distributive if the 
following distributive law holds: 


af (bVc) =(aAb)V (adc) 


for all a,b,c € L. 
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Theorem 19.4 A lattice L is distributive if and only if 
aV (bAc) =(aVb)A(aVe) 

for alla,b,c€ L. 

PRooF. Let us assume that LD is a distributive lattice. 


ON (OA 6) = 


| 
— 
< 
= 
> 
ce 


= |[(aV b) Aa] V [(aV b) Ac 
=(aVb)A(aVc). 


The converse follows directly from the Duality Principle. 


A Boolean algebra is a lattice B with a greatest element J and a 
smallest element O such that B is both distributive and complemented. The 
power set of X, P(X), is our prototype for a Boolean algebra. As it turns 
out, it is also one of the most important Boolean algebras. The following 
theorem allows us to characterize Boolean algebras in terms of the binary 
relations V and A without mention of the fact that a Boolean algebra is a 
poset. 


Theorem 19.5 A set B is a Boolean algebra if and only if there exist binary 
operations V and A on B satisfying the following axioms. 


1. aVb=bVaandaNb=bAa fora,beE B. 
2. aV (bVc) =(aVb) Vc andad (bAc) =(aAb)Ac fora,b,ce B. 


3. aA (bVc) = (aAb)V (adc) andaVv (bAc) = (aV b) A (aVec) for 
a,b,cE B. 


4. There exist elements I and O such thataVO=a andaAI =a for 
allae€ B. 


5. For every a € B there exists an a’ € B such thataVa' =I and 
aha =O. 
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Proor. Let B be a set satisfying (1)—-(5) in the theorem. One of the 
idempotent laws is satisfied since 


a=aVO 
=aV (Aa ) 
=(aVa)A(aVa’) 
=(aVvalAl 
=aVvVa. 
Observe that 
IVD= UV ATHaCADVGADHIVIiageL 


Consequently, the first of the two absorption laws holds, since 


aV (aA b) =(aAI)V (aA b) 
af (IVb) 


| 
Qa 
> 
— 


The other idempotent and absorption laws are proven similarly. Since B also 
satisfies (1)—(3), the conditions of Theorem 19.3 are met; therefore, B must 
be a lattice. Condition (4) tells us that B is a distributive lattice. 

For a€ B, OV a =a; hence, O = a and O is the smallest element in B. 
To show that I is the largest element in B, we will first show that a Vb =b 
is equivalent toaAb=a. Since aV I =a for all a € B, using the absorption 
laws we can determine that 


aVi=(@AI)VISIViAa)=1 


or ax TI for alla in B. Finally, since we know that B is complemented by 
(5), B must be a Boolean algebra. 

Conversely, suppose that B is a Boolean algebra. Let J and O be the 
greatest and least elements in B, respectively. If we define a V b and aA bas 
least upper and greatest lower bounds of {a,b}, then B is a Boolean algebra 
by Theorem 19.3 , Theorem 19.4, and our hypothesis. 


Many other identities hold in Boolean algebras. Some of these identities 
are listed in the following theorem. 


Theorem 19.6 Let B be a Boolean algebra. Then 
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1.aVI=TI anda\NO=O for allac B. 

2. IfaVb=aVcandaAb=adc fora,b,ce€ B, thenb=c. 
3. IfaVb=I andaAb=O, thenb=da’. 

4. (a’)’ =a for alla€ B. 

5. =O and O' =T. 

6. (aV b)' =a’ Ab’ and (ab) =a' Vb! (De Morgan’s Laws). 


PRooF. We will prove only (2). The rest of the identities are left as exercises. 
ForaVb=aVcandaAb=adce, we have 


Finite Boolean Algebras 


A Boolean algebra is a finite Boolean algebra if it contains a finite number 
of elements as a set. Finite Boolean algebras are particularly nice since we 
can classify them up to isomorphism. 

Let B and C be Boolean algebras. A bijective map ¢: B > C is an 
tsomorphism of Boolean algebras if 


for all a and b in B. 
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We will show that any finite Boolean algebra is isomorphic to the Boolean 
algebra obtained by taking the power set of some finite set X. We will need 
a few lemmas and definitions before we prove this result. Let B be a finite 
Boolean algebra. An element a € B is an atom of B ifa#O andaAb=a 
for all nonzero 6 € B. Equivalently, a is an atom of B if there is no nonzero 
b € B distinct from a such that O x b Xa. 


Lemma 19.7 Let B be a finite Boolean algebra. If b is a nonzero element 
of B, then there is an atom a in B such that a ~ 6. 


ProoF. If } is an atom, let a = b. Otherwise, choose an element 5;, not 
equal to O or b, such that 6; = b. We are guaranteed that this is possible 
since D is not an atom. If 6; is an atom, then we are done. If not, choose be, 
not equal to O or bj, such that bg ~ b;. Again, if b2 is an atom, let a = bo. 
Continuing this process, we can obtain a chain 


Ox--- xX b3 X bg Xb, XO. 


Since B is a finite Boolean algebra, this chain must be finite. That is, for 
some k, by is an atom. Let a = by. 


Lemma 19.8 Leta and b be atoms in a finite Boolean algebra B such that 
a#b. Thena\b=O. 


PROOF. Since a / b is the greatest lower bound of a and b, we know that 
aN\b~x<a. Hence, either aA b=aoraAb=O. However, if aA b= a, then 
either a x b or a = O. In either case we have a contradiction because a and 
b are both atoms; therefore, a A b = O. 


Lemma 19.9 Let B be a Boolean algebra and a,b € B. The following 
statements are equivalent. 


l.axb. 
2. aAb'=O. 
3.aVb=T. 


ProoF. (1) > (2). Ifa =}, then aVb=b. Therefore, 
aN\bl) =a (av by)’ 
=aN(a' Ab’) 
=(aNa Av 
=OAU' 
=O. 
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(2) => (2). Peay =O, then a Vb=(eA0) =O =2, 
(3) > (1). Ifa’ Vb=T, then 


a=a/(a' Vb) 
=(aAa’')V (ab) 
= OV (ab) 
=a/b. 


Thus, a ~ b. 


Lemma 19.10 Let B be a Boolean algebra and b and c be elements in B 
such that b Kc. Then there exists an atom a € B such thata x b anda Ke. 


Proor. By Lemma 19.9, bA c! 4 O. Hence, there exists an atom a such 
that a x bA c. Consequently, a <x b anda Xe. 


Lemma 19.11 Letb€ B and aj,...,an be the atoms of B such that a; ~ b. 
Then b= a, V---V@n. Furthermore, if a,a,,...,@n, are atoms of B such that 
axb,a; xb, andb=aVa,V---V an, thena=a; for somei=1,...,n. 


PROOF. Let 6} = a1 V-::V dy. Since a; < 6b for each 7, we know that b, ~ 6. 
If we can show that 6 X 61, then the lemma is true by antisymmetry. Assume 
b 4 by. Then there exists an atom a such that a x b and a ZF by. Since a is 
an atom and a ~ b, we can deduce that a = a; for some a;. However, this is 
impossible since a < b;. Therefore, 6 X 01. 

Now suppose that b = a, V--- V ay. If a is an atom less than b, 


a=aANb=a (a, V---V an) = (aAa1)V-+-V (aA an). 


But each term is O or a with a A a; occurring for only one a;. Hence, by 
Lemma 19.8, a = a; for some i. 


Theorem 19.12 Let B be a finite Boolean algebra. Then there exists a set 
X such that B is isomorphic to P(X). 


PrRooFr. We will show that B is isomorphic to P(X), where X is the set 
of atoms of B. Let a € B. By Lemma 19.11, we can write a uniquely as 
a=a,V---V Gy for aj,...,d, € X. Consequently, we can define a map 
¢: B- P(X) by 


g(a) = d(a, V--- V an) = {G4,..., An}. 
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Clearly, @ is onto. 

Now let a = a, V---Vady and b = bi V---Vb», be elements in B, where each 
a; and each 6; is an atom. If ¢(a) = $(b), then {a1,...,an} = {b1,..., bm} 
and a = b. Consequently, ¢ is injective. 

The join of a and 6b is preserved by @ since 


o(aV b) = d(a1 V +++ V an V b1 V +++ V bm) 
= Sti y-<c 5 piss Om yf 
=A iiss <ostin ) UA ies lat 
= O(a, V--+V an) UG(b1 A- ++ V bm) 
= (a) U 9(0). 


Similarly, ¢(a A b) = g(a) N (0). 


We leave the proof of the following corollary as an exercise. 


Corollary 19.13 The order of any finite Boolean algebra must be 2” for 
some positive integer n. 


19.3. The Algebra of Electrical Circuits 


The usefulness of Boolean algebras has become increasingly apparent over 
the past several decades with the development of the modern computer. 
The circuit design of computer chips can be expressed in terms of Boolean 
algebras. In this section we will develop the Boolean algebra of electrical 
circuits and switches; however, these results can easily be generalized to the 
design of integrated computer circuitry. 

A switch is a device, located at some point in an electrical circuit, that 
controls the flow of current through the circuit. Each switch has two possible 
states: it can be open, and not allow the passage of current through the 
circuit, or a it can be closed, and allow the passage of current. These states 
are mutually exclusive. We require that every switch be in one state or the 
other: a switch cannot be open and closed at the same time. Also, if one 
switch is always in the same state as another, we will denote both by the 
same letter; that is, two switches that are both labeled with the same letter 
a will always be open at the same time and closed at the same time. 

Given two switches, we can construct two fundamental types of circuits. 
Two switches a and 0 are in series if they make up a circuit of the type 
that is illustrated in Figure 19.3. Current can pass between the terminals A 
and B in a series circuit only if both of the switches a and b are closed. We 
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will denote this combination of switches by a A b. Two switches a and 6 are 
in parallel if they form a circuit of the type that appears in Figure 19.4. In 
the case of a parallel circuit, current can pass between A and B if either one 
of the switches is closed. We denote a parallel combination of circuits a and 
bby av b. 


A a b B 


Figure 19.3. aA b 


Figure 19.4. aV b 


We can build more complicated electrical circuits out of series and par- 
allel circuits by replacing any switch in the circuit with one of these two 
fundamental types of circuits. Circuits constructed in this manner are called 
series-parallel circuits. 

We will consider two circuits equivalent if they act the same. That is, if 
we set the switches in equivalent circuits exactly the same we will obtain the 
same result. For example, in a series circuit a/b is exactly the same as b/A a. 
Notice that this is exactly the commutative law for Boolean algebras. In 
fact, the set of all series-parallel circuits forms a Boolean algebra under the 
operations of V and A. We can use diagrams to verify the different axioms 
of a Boolean algebra. The distributive law, a A (bV c) = (aA b) V (aAc), 
is illustrated in Figure 19.5. If a is a switch, then a’ is the switch that is 
always open when a is closed and always closed when a is open. A circuit 
that is always closed is J in our algebra; a circuit that is always open is O. 
The laws for a A a’ = O and aV a’ =I are shown in Figure 19.6. 


Example 9. Every Boolean expression represents a switching circuit. For 
example, given the expression (a V b) A (a V b') A (a V b), we can construct 
the circuit in Figure 19.7. a 


Theorem 19.14 The set of all circuits is a Boolean algebra. 
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Figure 19.5. aA (bV cc) = (aAb)V (adc) 


a 


Figure 19.6. a\a’ =O andaVa' =I 


We leave as an exercise the proof of this theorem for the Boolean algebra 
axioms not yet verified. We can now apply the techniques of Boolean algebras 
to switching theory. 


Example 10. Given a complex circuit, we can now apply the techniques 
of Boolean algebra to reduce it to a simpler one. Consider the circuit in 
Figure 19.7. Since 


(aVb) A (aV0') A (aV b) = (aV db) A(aVb)A(aVl’) 
(aV b)A(aV0’) 


=aV(bAU) 
=aVO 
=a, 
a a a 
b b! b 


Figure 19.7. (aV b) A (aV 0b‘) A (av b) 
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we can replace the more complicated circuit with a circuit containing the 
single switch a and achieve the same function. | 


Historical Note | 


George Boole (1815-1864) was the first person to study lattices. In 1847, he 
published The Investigation of the Laws of Thought, a book in which he used lattices 
to formalize logic and the calculus of propositions. Boole believed that mathematics 
was the study of form rather than of content; that is, he was not so much concerned 
with what he was calculating as with how he was calculating it. Boole’s work was 
carried on by his friend Augustus De Morgan (1806-1871). De Morgan observed 
that the principle of duality often held in set theory, as is illustrated by De Morgan’s 
laws for set theory. He believed, as did Boole, that mathematics was the study of 
symbols and abstract operations. 

Set theory and logic were further advanced by such mathematicians as Alfred 
North Whitehead (1861-1947), Bertrand Russell (1872-1970), and David Hilbert 
(1862-1943). In Principia Mathematica, Whitehead and Russell attempted to show 
the connection between mathematics and logic by the deduction of the natural 
number system from the rules of formal logic. If the natural numbers could be 
determined from logic itself, then so could much of the rest of existing mathematics. 
Hilbert attempted to build up mathematics by using symbolic logic in a way that 
would prove the consistency of mathematics. His approach was dealt a mortal blow 
by Kurt Gédel (1906-1978), who proved that there will always be “undecidable” 
problems in any sufficiently rich axiomatic system; that is, that in any mathematical 
system of any consequence, there will always be statements that can never be proven 
either true or false. 

As often occurs, this basic research in pure mathematics later became indis- 
pensable in a wide variety of applications. Boolean algebras and logic have become 
essential in the design of the large-scale integrated circuitry found on today’s com- 
puter chips. Sociologists have used lattices and Boolean algebras to model social 


hierarchies; biologists have used them to describe biosystems. 


Exercises 


1. Draw the lattice diagram for the power set of X = {a,b,c,d} with the set 
inclusion relation, C. 


2. Draw the diagram for the set of positive integers that are divisors of 30. Is 
this poset a Boolean algebra? 


3. Draw a diagram of the lattice of subgroups of Zy2. 


4. Let B be the set of positive integers that are divisors of 36. Define an order 
on B by a x bifa| 6. Prove that B is a Boolean algebra. Find a set X such 
that B is isomorphic to P(X). 
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5. Prove or disprove: Z is a poset under the relation a x 6 if a | b. 


6. Draw the switching circuit for each of the following Boolean expressions. 


(a) (aVbVa')Aa (c) aV (ab) 
(b) (aV b)’ A (av b) (d) (eVaVb) Ac A (av by 


7. Draw a circuit that will be closed exactly when only one of three switches a, 
b, and c are closed. 


8. Prove or disprove that the two circuits shown are equivalent. 


9. Let X be a finite set containing n elements. Prove that P(X) = 2”. Conclude 
that the order of any finite Boolean algebra must be 2” for some n € N. 


10. For each of the following circuits, write a Boolean expression. If the circuit 
can be replaced by one with fewer switches, give the Boolean expression and 
draw a diagram for the new circuit. 


a—b' 
b 
a a—b 
b a’ —b 
a—b—c 


11. Prove or disprove: The set of all nonzero integers is a lattice, where a X b is 
defined by a | b. 


12. Prove that aA b is the greatest lower bound of a and b in Theorem 19.3. 
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13. 


14. 


15. 


16. 


17. 


18. 


19. 


20. 


21. 
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Let L be a nonempty set with two binary operations V and A satisfying the 
commutative, associative, idempotent, and absorption laws. We can define a 
partial order on L, as in Theorem 19.3, by a x b if aVb=b. Prove that the 
greatest lower bound of a and b is aA b. 


Let G be a group and X be the set of subgroups of G ordered by set-theoretic 
inclusion. If H and K are subgroups of G, show that the least upper bound 
of H and K is the subgroup generated by HU K. 


Let R be a ring and suppose that X is the set of ideals of R. Show that X is 
a poset ordered by set-theoretic inclusion, C. Define the meet of two ideals I 
and Jin X by IN J and the join of IJ and J by I+ J. Prove that the set of 
ideals of R is a lattice under these operations. 


Let B be a Boolean algebra. Prove each of the following identities. 


I’=Oand O' =I. 


(a’)’ =a for alla ec B. 
(e) (aV b)' =a’ AU and (aA b)' =a’ V b' (De Morgan’s laws). 


By drawing the appropriate diagrams, complete the proof of Theorem 19.14 
to show that the switching functions form a Boolean algebra. 


Let B be a Boolean algebra. Define binary operations + and - on B by 


a+b=(aAb') Vv (a' Ab) 
a-b=aJAb. 


Prove that B is a commutative ring under these operations satisfying a? = a 
for alla € B. 


Let X be a poset such that for every a and b in X, either a < b or b Xa. 
Then X is said to be a totally ordered set. 


(a) Is a| ba total order on N? 


(b) Prove that N, Z, Q, and R are totally ordered sets under the usual 
ordering <. 


Let X and Y be posets. A map ¢: X > Y is order-preserving if a <b 
implies that d(a) < ¢(b). Let LZ and M be lattices. A map: L—> M 
is a lattice homomorphism if w(aV b) = (a) V w(b) and W(aA b) = 
(a) A w(b). Show that every lattice homomorphism is order-preserving, but 
that it is not the case that every order-preserving homomorphism is a lattice 
homomorphism. 


Let B be a Boolean algebra. Prove that a = 6 if and only if (aAb’)V(a' Ab) = O 
for a,b € B. 
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22. 


23. 


Table 19.1. Boolean polynomials 


xc yla axeVy avAry 
0; 1 0 0 
O 1] 1 1 0 
1 0; O 1 0 
1 1/0 1 1 


Let B be a Boolean algebra. Prove that a = 0 if and only if (aAb’)V(a’Ab) =b 
for all b € B. 


Let LZ and M be lattices. Define an order relation on L x M by (a,b) X (c,d) 
if a =< cand b <d. Show that L x M is a lattice under this partial order. 


Programming Exercises 


A Boolean or switching function on n variables is a map f : {O,I}" > 
{0,7}. A Boolean polynomial is a special type of Boolean function: it is any type of 


Boolean expression formed from a finite combination of variables 71,..., 2, together 
with O and J, using the operations V, A, and’. The values of the functions are 


defined in Table 19.1. Write a program to evaluate Boolean polynomials. 
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Vector Spaces 


In a physical system a quantity can often be described with a single number. 
For example, we need to know only a single number to describe temperature, 
mass, or volume. However, for some quantities, such as location, we need 
several numbers. To give the location of a point in space, we need 2, y, 
and z coordinates. Temperature distribution over a solid object requires 
four numbers: three to identify each point within the object and a fourth 
to describe the temperature at that point. Often n-tuples of numbers, or 
vectors, also have certain algebraic properties, such as addition or scalar 
multiplication. 

In this chapter we will examine mathematical structures called vector 
spaces. As with groups and rings, it is desirable to give a simple list of 
axioms that must be satisfied to make a set of vectors a structure worth 
studying. 


20.1 Definitions and Examples 


A vector space V over a field F is an abelian group with a scalar product 
a-v or av defined for all a € F and all v € V satisfying the following axioms. 


a(Gv) = (a8)v; 
© (a+ By = av + Bo; 


e a(u+v) =au+au; 
e lv=v; 


where a, G0 € F and u,ve€ V. 
The elements of V are called vectors; the elements of F' are called 
scalars. It is important to notice that in most cases two vectors cannot be 
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multiplied. In general, it is only possible to multiply a vector with a scalar. 
To differentiate between the scalar zero and the vector zero, we will write 
them as 0 and 0, respectively. 

Let us examine several examples of vector spaces. Some of them will be 
quite familiar; others will seem less so. 


Example 1. The n-tuples of real numbers, denoted by R”, form a vector 
space over R. Given vectors u = (w1,...,Un) and v = (v1,...,Un) in R” and 
a in R, we can define vector addition by 


UrvV= Chips Ei tO) = (ui + 1,.-., tn + Un) 
and scalar multiplication by 
CU =O (Wiss tin) S (OB sas hy) 
a 
Example 2. If F is a field, then Faz] is a vector space over F’. The vectors 


in F'|x] are simply polynomials. Vector addition is just polynomial addition. 
If a € F and p(x) € F{z], then scalar multiplication is defined by ap(x). Hf 


Example 3. The set of all continuous real-valued functions on a closed 
interval [a,b] is a vector space over R. If f(x) and g(x) are continuous on 
[a, 6], then (f + g)(x) is defined to be f(x) + g(x). Scalar multiplication is 
defined by (af)(x) = af(x) for a € R. For example, if f(a) = sinz and 
g(x) = x”, then (2f +5g)(x) = 2sinx + 52. a 


Example 4. Let V = Q(V2) = {a+ bV2: a,b € Q}. Then V is a vector 
space over Q. If u = a+byV2 and v = c+dy2, then u+v = (a+c)+(b+d)V2 
is again in V. Also, for a € Q, av is in V. We will leave it as an exercise to 
verify that all of the vector space axioms hold for V. a 


Proposition 20.1 Let V be a vector space over F’. Then each of the fol- 
lowing statements is true. 

1. Ov=0 for allvEe V. 

2. a0 =0 for allaec F. 


3. If av = 0, then either a =0 orv=O. 
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4. (-1)v = -v for allveV. 
5. —(av) = (-—a)v = a(-v) for allaé F andallu eV. 
PROOF. To prove (1), observe that 
Ov = (0+ 0)v = Ov + 0; 


consequently, 0 + Ov = Ov + Ov. Since V is an abelian group, 0 = Ov. 

The proof of (2) is almost identical to the proof of (1). For (3), we are 
done if a = 0. Suppose that a 4 0. Multiplying both sides of av = 0 by 
1/a, we have v = 0. 

To show (4), observe that 


v+(-1)v = 1lv+ (-1)v = (1—-1)v = Ov =0, 


and so —v = (—1)v. We will leave the proof of (5) as an exercise. 


20.2 Subspaces 


Just as groups have subgroups and rings have subrings, vector spaces also 
have substructures. Let V be a vector space over a field F’, and W a subset 
of V. Then W is a subspace of V if it is closed under vector addition and 
scalar multiplication; that is, if u,v € W anda € F, it will always be the 
case that u+ v and av are also in W. 


Example 5. Let W be the subspace of R® defined by W = {(x1, 2x1 + 
£2,021 — 2): %1,£2 € R}. We claim that W is a subspace of R®. Since 
a(x, 271 + ro, 21 — 2) = (aX, 0(221 + £2), (41 — X2)) 
= (a%1, 2(ar1) + axr2,ar1 — axe), 
W is closed under scalar multiplication. To show that W is closed under 
vector addition, let u = (#1, 221 + 42,21 — X2) and v = (yi, 2y1 + ya, y1 — Y2) 
be vectors in W. Then 
utv = (a1 + y1,2(01 + y1) + (G2 + yo), (v1 + y1) — (%2 + y2)). 

|_| 

Example 6. Let W be the subset of polynomials of Fa] with no odd-power 


terms. If p(x) and q(x) have no odd-power terms, then neither will p(7)+q(z). 
Also, ap(x) € W for a € F and p(x) € W. a 
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Let V be any vector space over a field F’ and suppose that v1, v2,...,Un 
are vectors in V and qj,Q2,...,Q@, are scalars in F. Any vector w in V of 
the form 


n 
w= So aiti = Q1Vy + AQUQ +++ + ANUn 
i=1 
is called a linear combination of the vectors v1, v2,...,Un. The spanning 
set of vectors v1, V2,...,Un is the set of vectors obtained from all possible 
linear combinations of v1, v2,...,Un. If W is the spanning set of v1, v2,..., Un, 
then we often say that W is spanned by v1, v2,..-,Un- 


Proposition 20.2 Let S = {v1,v2,...,Un} be vectors in a vector space V. 
Then the span of S is a subspace of V. 


PROOF. Let wu and v be in S. We can write both of these vectors as linear 
combinations of the v;’s: 


U = QV1 + AQU2 + +++ + AnUn 
v = Biv, + Bove +++++ Brun. 
Then 


u+v = (ay + B1)u1 + (a2 + Ba)ve +--+ + (Qn + Bn)Un 


is a linear combination of the v;’s. For a € F, 


au = (aay)v1 + (aag)v2 + +++ + (AAn) Un 


is in the span of S. 


20.3. Linear Independence 


Let S = {v1,v2,...,Un} be a set of vectors in a vector space V. If there exist 
scalars @1,Q2...Q@, € F such that not all of the a;’s are zero and 


QV, + AgQv2 ++++ + AnUn =O, 


then S' is said to be linearly dependent. If the set S' is not linearly 
dependent, then it is said to be linearly independent. More specifically, S$ 
is a linearly independent set if 


101, + Agvg +-++ + AnVyn = 0 


implies that 


QQ, = a2 =-:'=a,=0 


for any set of scalars {a1,a2...an}. 
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Proposition 20.3 Let {v1,v2,...,Un} be a set of linearly independent vec- 
tors in a vector space. Suppose that 

V = avy + AQU2 + +++ + AnUn = B11 + Bove +++++ Brn. 
Then ay = 61, a2 = Bo,...,An = Brn. 
ProoF. If 

VU = Q1V1 + AQve +--+ + AnUn = 6101 + Bova +---+ Bnvn, 


then 
(ay — B1)v1 + (a2 — B2)v2 +-+-+ (Qn — Bn)vn = 9. 


Since vj,...,Un are linearly independent, a; — 6; = 0 fori =1,...,n. 


The definition of linear dependence makes more sense if we consider the 
following proposition. 


Proposition 20.4 A set {v1,v2,...,Un} of vectors in a vector space V is 
linearly dependent if and only if one of the v;’s is a linear combination of 
the rest. 


PROOF. Suppose that {v1,v2,...,Un} is a set of linearly dependent vectors. 
Then there exist scalars a1,...,@,, such that 


QV, + AQU2 +++ + AnUn = 0, 


with at least one of the a;’s not equal to zero. Suppose that a, 4 0. Then 


a1 Ak-1 Ak+1 An 
Uk = Ups ee Uk-1 URAL Tt Un: 
Ok Ok Xk Ok 


Conversely, suppose that 


Up = Bur +-+> + Be—-1up—1 + Pegiveti t+++ + Bnvn. 


Then 


Bry +++ + Be-1Up—-1 — Ve + Beyrveti +++ + Brin = 0. 


The following proposition is a consequence of the fact that any system of 
homogeneous linear equations with more unknowns than equations will have 
a nontrivial solution. We leave the details of the proof for the end-of-chapter 
exercises. 
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Proposition 20.5 Suppose that a vector space V is spanned by n vectors. 
Ifm>n, then any set of m vectors in V must be linearly dependent. 


A set {€1,€2,...,€n} of vectors in a vector space V is called a basis for 
V if {e1, €2,...,€n} is a linearly independent set that spans V. 


Example 7. The vectors e; = (1,0,0), eg = (0,1,0), and e3 = (0,0,1) 
form a basis for R°. The set certainly spans R?, since any arbitrary vector 
(e1,%9;03) im R® can be written as x1e1 + x2e2 + x3e3. Also, none of the 
vectors €1,e2,e3 can be written as a linear combination of the other two; 
hence, they are linearly independent. The vectors €1, €2,€3 are not the only 
basis of R*: the set {(3, 2,1), (3, 2,0), (1,1, 1)} is also a basis for R°. | 


Example 8. Let Q(V/2) = {a+ bV2: a,b € Q}. The sets {1, /2} and 
{1 + V2,1— V2} are both bases of Q(V2). a 


From the last two examples it should be clear that a given vector space 
has several bases. In fact, there are an infinite number of bases for both 
of these examples. In general, there is no unique basis for a vector space. 
However, every basis of R® consists of exactly three vectors, and every basis 
of Q(V2) consists of exactly two vectors. This is a consequence of the next 
proposition. 


Proposition 20.6 Let {e1,¢2,...,e€m} and { fi, fo,..., fn} be two bases for 
a vector space VV. Thenm =n. 


PROOF. Since {e1, €2,...,@m} is a basis, it is a linearly independent set. By 
Proposition 20.5, n < m. Similarly, {f1, fo,..., fn} is a linearly independent 
set, and the last proposition implies that m < n. Consequently, m = n. 


If {e1, €2,...,€n} is a basis for a vector space V, then we say that the 
dimension of V is n and we write dimV = n. We will leave the proof of 
the following theorem as an exercise. 


Theorem 20.7 Let V be a vector space of dimension n. 


1. If S = {v1,...,Un} is a set of linearly independent vectors for V, then 
S is a basis for V. 


2. If S={v1,...,Un} spans V, then S is a basis for V. 
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3. If S = {u1,..., up} is a set of linearly independent vectors for V with 
k <n, then there exist vectors Up4i1,...,Un such that 


VUidtess Uns Desa sey 


is a basis for V. 


Exercises 


1. If F is a field, show that Fz] is a vector space over F’', where the vectors 
in Fz] are polynomials. Vector addition is polynomial addition, and scalar 
multiplication is defined by ap(x) for a € F. 


2. Prove that Q(/2) is a vector space. 


3. Let Q(V2, V3) be the field generated by elements of the form a+ b/2 + cv3, 
where a, b,c are in Q. Prove that Q(V2, V3) is a vector space of dimension 4 
over Q. Find a basis for Q(/2, V3). 


4. Prove that the complex numbers are a vector space of dimension 2 over R. 


5. Prove that the set P,, of all polynomials of degree less than n form a subspace 
of the vector space F[z]. Find a basis for P, and compute the dimension 


of P,,. 

6. Let F be a field and denote the set of n-tuples of F by F”. Given vectors 
U = (W1,...,Un) and v = (v1,...,Un) in F” and a in F, define vector addition 
by 


WHY = (yey tn) + Oty +025 Un) = (ta #015 +s + Un) 


and scalar multiplication by 
au = a(ui,...,Un) = (At1,..., Un). 


Prove that F” is a vector space of dimension n under these operations. 


7. Which of the following sets are subspaces of R?? If the set is indeed a subspace, 
find a basis for the subspace and compute its dimension. 


a) {(@1, 2,3) : 3x, — 2x2 +23 = OF 


( 
( 


b) {(#1, 2,23) : 841 + 4a3 = 0,20) — x2 + 43 = OF} 
(c) {(£1, 2, £3) ss Oe 222 + 223 = 2} 
(d) {(x1, 22,23) : 8x1 — 245 = 0} 
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8. Show that the set of all possible solutions (x,y,z) € R®° of the equations 


Ar + By+Cz=0 
Daz+ Ey+Cz=0 


forms a subspace of R°. 


9. Let W be the subset of continuous functions on [0,1] such that f(0) = 0. 
Prove that W is a subspace of C[0, 1]. 


10. Let V be a vector space over F’. Prove that —(av) = (—a)v = a(—v) for all 
aé€FandallveV. 


11. Let V be a vector space of dimension n. Prove each of the following statements. 


(a) If S = {v1,..., Un} is a set of linearly independent vectors for V, then 
S is a basis for V. 


(b) If S = {v,,...,Un} spans V, then S' is a basis for V. 


(c) If S = {vy,..., ug} is a set of linearly independent vectors for V with 
k <n, then there exist vectors vp41,...,Un Such that 
{u1,..-, Uk; Ukt1;+++)Un} 


is a basis for V. 
12. Prove that any set of vectors containing O is linearly dependent. 
13. Let V be a vector space. Show that {0} is a subspace of V of dimension zero. 


14. If a vector space V is spanned by n vectors, show that any set of m vectors 
in V must be linearly dependent for m > n. 


15. Linear Transformations. Let V and W be vector spaces over a field F, of 
dimensions m and n, respectively. If T.: V + W is a map satisfying 


T(ut+v) =T(u)+T(v) 
T(av) = aT(v) 


for all a € F and all u,v € V, then T is called a linear transformation 
from V into W. 


(a) Prove that the kernel of T, ker(T) = {uv € V : T(v) = 0}, is a subspace 
of V. The kernel of T is sometimes called the null space of T. 

(b) Prove that the range or range space of T, R(V) ={weEW:T(v) = 
w for some v € V}, is a subspace of W. 

(c) Show that T: V > W is injective if and only if ker(T) = {O}. 

(d) Let {v1,...,v%} be a basis for the null space of T. We can extend this 
basis to be a basis {v1,..., Ux, Ug41,---;Um} of V. Why? Prove that 
{T(vx41),---;T(Um)} is a basis for the range of T. Conclude that the 
range of T has dimension m — k. 
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(e) Let dimV = dimW. Show that a linear transformation T : V > W is 
injective if and only if it is surjective. 


16. Let V and W be finite dimensional vector spaces of dimension n over a field 
F. Suppose that T : V — W is a vector space isomorphism. If {v1,..., Un} 
is a basis of V, show that {T(v1),...,T(un)} is a basis of W. Conclude that 
any vector space over a field F' of dimension n is isomorphic to F”. 


17. Direct Sums. Let U and V be subspaces of a vector space W. The sum of 
U and V, denoted U + V, is defined to be the set of all vectors of the form 
ut+v, whereu€ U andveV. 


(a) Prove that U + V and UNV are subspaces of W. 


(b) IfU+V =W and UNV =O, then W is said to be the direct sum 
of U and V and we write W =U @V. Show that every element w © W 
can be written uniquely as w=u+v, whereu€ U andveV. 


(c) Let U be a subspace of dimension k of a vector space W of dimension 
n. Prove that there exists a subspace V of dimension n — k such that 
W =U ®V. Is the subspace V unique? 


(d) If U and V are arbitrary subspaces of a vector space W, show that 
dim(U + V) = dimU + dimV — dim(UNV). 


18. Dual Spaces. Let V and W be finite dimensional vector spaces over a 
field F’. 


(a) Show that the set of all linear transformations from V into W, denoted 
by Hom(V, W), is a vector space over F’, where we define vector addition 
as follows: 


(S+T)(v) = S(v) + T(v) 
(aS)(v) = aS(v), 


where S,T € Hom(V,W), ~a€ F, andveV. 


(b) Let V be an F-vector space. Define the dual space of V to be 
V* = Hom(V, Ff’). Elements in the dual space of V are called linear 
functionals. Let v1,...,vn be an ordered basis for V. If v = a,v, + 
+++ + QyUy is any vector in V, define a linear functional ¢; : V — F by 
¢i(v) = a;. Show that the ¢,’s form a basis for V*. This basis is called 
the dual basis of v1,...,Un (or simply the dual basis if the context 
makes the meaning clear). 

(c) Consider the basis {(3, 1), (2,—2)} for R?. What is the dual basis for 
(R2)"? 

(d) Let V be a vector space of dimension n over a field F' and let V** be the 


dual space V*. Show that each element v € V gives rise to an element 
Ay in V** and that the map v+ X, is an isomorphism of V with V**. 
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fields, to find vector spaces in new settings. 


21 
Fields 


It is natural to ask whether or not some field F’ is contained in a larger field. 
We think of the rational numbers, which reside inside the real numbers, while 
in turn, the real numbers live inside the complex numbers. We can also study 
the fields between Q and R and inquire as to the nature of these fields. 

More specifically if we are given a field F and a polynomial p(x) € F[z], 
we can ask whether or not we can find a field E containing F' such that 
p(x) factors into linear factors over E[x]. For example, if we consider the 
polynomial 

p(x) = 2* — 527 +6 

in Q[z], then p(x) factors as (2? — 2)(x? — 3). However, both of these factors 
are irreducible in Q[z]. If we wish to find a zero of p(x), we must go toa 
larger field. Certainly the field of real numbers will work, since 


p(x) = (x — V2)(x + V2)(x — V3)( + V3). 
It is possible to find a smaller field in which p(x) has a zero, namely 
Q(V2) = {a+ bV2:4,b € Q}. 
We wish to be able to compute and study such fields for arbitrary polynomials 
over a field F’. 
21.1 Extension Fields 


A field F is an extension field of a field F' if F is a subfield of EF. The field 
F is called the base field. We write F Cc E. 


Example 1. For example, let 


F =Q(vV2) = {a+ bV2: a,b € Q} 
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and let FE = Q(./2+ V3) be the smallest field containing both Q and 2+ V3. 
Both F and F are extension fields of the rational numbers. We claim that 
E is an extension field of F. To see this, we need only show that \/2 is in E. 
Since /2 + V3 is in E, 1/(V2+ V3) = V3 — V2 must also be in E. Taking 
linear combinations of /2+ V3 and V3 — V2, we find that J/2 and V3 must 
both be in E. | 


Example 2. Let p(x) = 27+ 2+1 € Zs[z]. Since neither 0 nor 1 is 
a root of this polynomial, we know that p(x) is irreducible over Z2. We 
will construct a field extension of Z2 containing an element @ such that 
p(a) = 0. By Theorem 17.13, the ideal (p(x)) generated by p(x) is maximal; 
hence, Z2[x]/(p(x)) is a field. Let f(x) + (p(x)) be an arbitrary element of 
Z2(x]/(p(x)). By the division algorithm, 


f(x) = (2? +44 1)q(2) + r(2), 
where the degree of r(x) is less than the degree of x? + 2 +1. Therefore, 
f(x) + (a? +241) =r(z) 4+ (2? +241). 


The only possibilities for r(x) are then 0, 1, x, and 1+ 2. Consequently, 
E = Za[a|/(x? + x +1) is a field with four elements and must be a field 
extension of Zz, containing a zero a of p(x). The field Z2(a) consists of 
elements 


0+ 0a =0 
1+0a=1 
0O+la=a 
1l+la=l1-+a. 


Notice that a? +a+1=0; hence, if we compute (1 + a)?, 
(l+a)(lt+a)=1l+a+a+(a) =a. 


Other calculations are accomplished in a similar manner. We summarize 
these computations in the following tables, which tell us how to add and 
multiply elements in E. 


+ 0 1 a l+a 
0 0 1 a l+a 
1 1 0 l+a a 
a a l+a 0 1 
l+a|s|l+a a 1 0 
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: 0 1 a l+a 
0 0 0 0 0 
1 0 1 a l+a 
a 0 a l+a 1 
l+a|}0O l+a 1 a 


The following theorem, due to Kronecker, is so important and so basic 
to our understanding of fields that it is often known as the Fundamental 
Theorem of Field Theory. 


Theorem 21.1 Let F be a field and let p(x) be a nonconstant polynomial 
in F\a|. Then there exists an extension field E of F and an element a € E 
such that p(a) = 0. 


PRooF. To prove this theorem, we will employ the method that we used 
to construct Example 2. Clearly, we can assume that p(x) is an irreducible 
polynomial. We wish to find an extension field E of F containing an element 
a such that p(a) = 0. The ideal (p(x)) generated by p(x) is a maximal 
ideal in Fz] by Theorem 17.13; hence, F'[x]/(p()) is a field. We claim that 
E = F|x]/(p(«)) is the desired field. 

We first show that FE is a field extension of Ff’. We can define a homo- 
morphism of commutative rings by the map ~: F > F|z]/(p(x)), where 
W(a) = a+ (p(2)) for a € F. It is easy to check that w is indeed a ring 
homomorphism. Observe that 


Pa) + V0) = (a + (p(a))) + (0+ (o(2))) = (a+ 8) + (p(w) = Y(a + 6) 


and 
v(a)¥(0) = (a+ (p(x)))(b + (p(z))) = ab + (p(z)) = (ad). 


To prove that w is one-to-one, assume that 


a+ (p(#)) = Ya) = ob) = b+ (p(@)). 


Then a—b is a multiple of p(x), since it lives in the ideal (p(x)). Since p(x) is a 
nonconstant polynomial, the only possibility is that a — 6 = 0. Consequently, 
a=band y is injective. Since w is one-to-one, we can identify F' with the 
subfield {a + (p(x)): a € F'} of E and view EF as an extension field of F. 
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It remains for us to prove that p(x) has a zero a € E. Set a = «+ (p(x)). 
Then a is in LE. If p(x) =an9 +aj4+---+an2", then 


P(@) = ag + an (a + (p(@))) + +++ + an(a + (p(x)))" 
= aq + (a1 + (p(a))) +++ + (ana + (p(@))) 
= do + aye ++*-++a,2” + (p(z)) 
= 0+ (p(2)). 


Therefore, we have found an element a € E = F'|x]/(p(x)) such that a is a 
zero of p(x). 


Example 3. Let p(x) = 2° +2441 € Zo[z]. Then p(x) has irreducible 
factors 7 +2+1 and x? +a+1. Fora field extension E of Zz such that p(z) 
has a root in E, we can let E be either Za[x]/(x? +241) or Za[z]/(a3+a2+1). 
We will leave it as an exercise to show that Ze[x]/(a? +2 +1) is a field with 
2° = 8 elements. | 


Algebraic Elements 


An element a in an extension field E over F is algebraic over F if f(a) =0 
for some nonzero polynomial f(z) € Fiz]. An element in F that is not 
algebraic over F’ is transcendental over F’. An extension field EF of a field 
F is an algebraic extension of F if every element in F is algebraic over F’. 
If E is a field extension of F and aj,...,Q@, are contained in EF’, we denote 
the smallest field containing F and aj,...,Qn by F(a1,...,Qn). If FE = F(a) 
for some a € E, then E is a simple extension of F. 


Example 4. Both V2 and i are algebraic over Q since they are zeros of the 
polynomials 2? —2 and 2? +1, respectively. Clearly 7 and e are algebraic over 
the real numbers; however, it is a nontrivial fact that they are transcendental 
over Q. Numbers in R that are algebraic over Q are in fact quite rare. Almost 
all real numbers are transcendental over Q.! (In many cases we do not know 
whether or not a particular number is transcendental; for example, it is not 
known whether z + e is transcendental or algebraic.) a 


A complex number that is algebraic over Q is an algebraic number. A 


transcendental number is an element of C that is transcendental over Q. 


Example 5. We will show that W2-+ V3 is algebraic over Q. If a = 
/24+/3, then a? = 24+ /3. Hence, a? — 2 = V3 and (a? — 2)? = 3. 


Tf we choose a number in R, then there is a probability of 1 that the number will be 
transcendental over Q. 
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Since at — 4a? + 1 = 0, it must be true that a is a zero of the polynomial 
a* — 4x? +1 € Qiz]. | 

It is very easy to give an example of an extension field EF over a field F’, 
where F contains an element transcendental over F’. The following theorem 
characterizes transcendental extensions. 


Theorem 21.2 Let E be an extension field of F anda € E. Then a is 
transcendental over F if and only if F(a) is isomorphic to F(a), the field of 
fractions of F(z}. 


ProoF. Let ¢, : F(z] > E be the evaluation homomorphism for a. Then a 
is transcendental over F if and only if ¢a(p(x)) = p(a) 4 0 for all nonconstant 
polynomials p(x) € Fz]. This is true if and only if ker ¢éa = {0}; that is, 
it is true exactly when ¢q is one-to-one. Hence, E must contain a copy of 
Fx]. The smallest field containing Fz] is the field of fractions F(x). By 
Theorem 18.4, F must contain a copy of this field. 


We have a more interesting situation in the case of algebraic extensions. 


Theorem 21.3 Let E be an extension field of a field F anda € E with 
a algebraic over F. Then there is a unique irreducible monic polynomial 
p(x) € Flax] of smallest degree such that p(a) = 0. If f(x) is another monic 
polynomial in F [x] such that f(a) =0, then p(x) divides f(x). 


Proor. Let ¢q : F|a] > E be the evaluation homomorphism. The kernel of 
@a is a principal ideal generated by some p(x) € Fx] with deg p(x) > 1. We 
know that such a polynomial exists, since F'[z] is a principal ideal domain 
and a is algebraic. The ideal (p()) consists exactly of those elements of 
Fx] having a as a zero. If f(a) = 0 and f(z) is not the zero polynomial, 
then f(x) € (p(x)) and p(x) divides f(a). So p(x) is a polynomial of minimal 
degree having a as a zero. Any other polynomial of the same degree having 
a as a zero must have the form {p(x) for some 8 € F’. 

Suppose now that p(x) = r(a)s(x) is a factorization of p into polynomials 
of lower degree. Since p(a) = 0, r(a@)s(a) = 0; consequently, either r(a) = 0 
or s(a) = 0, which contradicts the fact that p is of minimal degree. Therefore, 
p(x) must be irreducible. 


Let FE be an extension field of F and a € EF be algebraic over F’. The 
unique monic polynomial p(x) of the last theorem is called the minimal 
polynomial for a over F’. The degree of p(x) is the degree of a over F. 


Example 6. Let f(x) = 27 —2 and g(x) = 24 — 4x? +1. These polynomials 
are the minimal polynomials of V2 and \/2+ V3, respectively. | 
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Proposition 21.4 Let E be a field extension of F anda € E be algebraic 
over F'. Then F(a) = Fia|/(p(x)), where p(x) is the minimal polynomial of 
a over F., 


Proor. Let ¢q : F [x] > E be the evaluation homomorphism. The kernel of 
this map is (p(x)), where p(x) is the minimal polynomial of a. By the First 
Isomorphism Theorem for rings, the image of ¢q in E is isomorphic to F(a) 
since it contains both F' and a. 


Theorem 21.5 Let E = F(a) be a simple extension of F, wherea € E 
is algebraic over F. Suppose that the degree of a over F isn. Then every 
element 6 © E can be expressed uniquely in the form 


B=botbiat+-+++bn-1a" 


for b; € F. 


PROOF. Since ¢,(F[z]) = F(a), every element in E = F(a) must be of the 
form ¢a(f(x)) = f(a), where f(a) is a polynomial in a with coefficients in 
F. Let 

p(x) = 2" +an_i2 1 +---+ a 


be the minimal polynomial of a. Then p(a) = 0; hence, 


a” = ana" ap. 


Similarly, 


a! — aa” 


= 6.40" SG,50" ES age 


1 1 


n— n—- 
= —@n_-1(—@n_10”” ~ —--+ — ag) — Qn_2.0" © — +--+ — aga. 


Continuing in this manner, we can express every monomial a”, m>n, as a 
linear combination of powers of a that are less than n. Hence, any 6 € F(a) 
can be written as 


B=bobtbhhat---+ be 


To show uniqueness, suppose that 


B=bo t+ bia t-+:+bn-10" | = cp teat++++e,-10"| 


for 6; and c; in F. Then 
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is in F[z] and g(a) = 0. Since the degree of g(x) is less than the degree 
of p(x), the irreducible polynomial of a, g(x) must be the zero polynomial. 
Consequently, 


bo — cg = by — cy = +++ = bp-1 — Cn-1 = O,” 


or b; = c; fori =0,1,...,2—1. Therefore, we have shown uniqueness. 


Example 7. Since x? + 1 is irreducible over R, (x? + 1) is a maximal ideal 
in R[z]. So E = R[z]/(x? +1) is a field extension of R that contains a root of 
x?+1. Let a=ax2+ (x? +1). We can identify E with the complex numbers. 
By Proposition 21.4, E is isomorphic to R(a) = {a+ ba: a,b € R}. We 
know that a? = —1 in E, since 


a? +1 = (e+ (a? +1))? + (1+ (2? +1)) 


Hence, we have an isomorphism of R(a) with C defined by the map that 
takes a + ba to a + bi. a 


Let FE be a field extension of a field F’. If we regard E as a vector space 
over F’, then we can bring the machinery of linear algebra to bear on the 
problems that we will encounter in our study of fields. The elements in the 
field E are vectors; the elements in the field F’ are scalars. We can think 
of addition in F as adding vectors. When we multiply an element in FE 
by an element of Ff’, we are multiplying a vector by a scalar. This view of 
field extensions is especially fruitful if a field extension FE of F is a finite 
dimensional vector space over F’, and Theorem 21.5 states that E = F(a) is 
finite dimensional vector space over F' with basis {1,a,a?,...,a"~1}. 

If an extension field FE of a field F' is a finite dimensional vector space 
over F of dimension n, then we say that E is a finite extension of degree 
n over F’. We write 

[Es Fl =", 


to indicate the dimension of F over F’. 


Theorem 21.6 Every finite extension field E of a field F is an algebraic 
extension. 


Proor. Let a € E. Since [E : F] =n, the elements 


lra,...,@ 
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cannot be linearly independent. Hence, there exist a; € F’, not all zero, such 


that 


1 


Ana” + anja” +++» +aja+ap = 0. 


Therefore, 
p(x) = Anz” +--+ + a9 € Fla] 


is a nonzero polynomial with p(a) = 0. 


Remark. Theorem 21.6 says that every finite extension of a field F is an 
algebraic extension. The converse is false, however. We will leave it as an 
exercise to show that the set of all elements in R that are algebraic over Q 
forms an infinite field extension of Q. 


The next theorem is a counting theorem, similar to Lagrange’s Theorem 
in group theory. Theorem 21.6 will prove to be an extremely useful tool in 
our investigation of finite field extensions. 


Theorem 21.7 If E is a finite extension of F and K is a finite extension 
of E, then K is a finite extension of F and 


[At Pl =|Kt |e ei, 


Proor. Let {a1,...,Q@n} be a basis for FE as a vector space over F’ and 
{1,.--, Bm} be a basis for K as a vector space over L. We claim that {a;{;} 
is a basis for K over F’. We will first show that these vectors span K. Let 
ué€ K. Then u = yt b;8; and b; = )~7_, ajja4, where b; € E and a,; € F. 


Then A h 
Uu= > (>: wun A; = x aj; (a4 B;). 
J 


j=1 \i=1 
So the mn vectors a;3; must span K over F’. 


We must show that {a;(;} are linearly independent. Recall that a set of 
vectors U1, V2,..-,Un in a vector space V are linearly independent if 


C1V1 + Covg + +++ + CpUn = 0 


implies that 


C=] Ss" = c, = 0; 


Let 
U= S > cij(ai;) =0 
1,9 
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for cj; € F’. We need to prove that all of the c;;’s are zero. We can rewrite u 


S> bs cas) B; = 0, 
rai 


as 


i=1 


where 0, Gja; € E. Since the §,’s are linearly independent over F, it must 
be the case that . 

S- Cig = 0 

i=l 


for all 7. However, the a; are also linearly independent over F’. Therefore, 
cij = O for all 7 and 7, which completes the proof. 


The following corollary is easily proved using mathematical induction. 


Corollary 21.8 Jf F; is a field fori =1,...,k and Fj, 1s a finite extension 
of F;, then Fy is a finite extension of F, and 


[Py : Fi] = [Fe i Fr-1| ote [F2 : Fj. 


Corollary 21.9 Let E be an extension field of F. If a € E is algebraic over 
F with minimal polynomial p(x) and 8 € F(a) with minimal polynomial 
q(x), then deg q(x) divides deg p(x). 


PROOF. We know that deg p(x) = [F(a) : F] and degq(x) = [F(6) : F]. 
Since F' c F(8) C F(a), 


Example 8. Let us determine an extension field of Q containing J/3+V5. It 
is easy to determine that the minimal polynomial of /3+ V5 is «4 — 16a? +4. 
It follows that 

[(Q(V3 + V5): Q] = 4. 


We know that {1,/3} is a basis for Q(V3) over Q. Hence, V3 + V5 
cannot be in Q(v/3 ). It follows that V5 cannot be in Q(V3 ) either. There- 
fore, {1,/5} is a basis for Q(V3, V5) = (Q(V3))(VW5) over Q(V3) and 
{1, V3, V5, V3V/5 = V/15 } is a basis for Q(V/3, V5) = Q(V3 + V5) over Q. 
This example shows that it is possible that some extension F'(a1,...,@n) is 
actually a simple extension of F’ even though n > 1. | 
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Example 9. Let us compute a basis for Q(W5,/5i), where \/5 is the 
positive square root of 5 and W5 is the real cube root of 5. We know that 


V5i ¢ Q(W5), so 
[Q(W5, V5i) : Q(/5)] =2. 


It is easy to determine that {1, /5i } is a basis for Q(W/5, 51) over Q(W5). 
We also know that {1, 75, (/5)?} is a basis for Q(W/5) over Q. Hence, a 
basis for Q(V5, V5) over Q is 


{1, V5 i, V5, (W5)7, (W5) 4, (V5) = 575i or V5 i}. 


Notice that W/5i is a zero of «© +5. We can show that this polynomial is 
irreducible over Q using Eisenstein’s Criterion, where we let p = 5. Conse- 
quently, 


Qc Q(Y5i) c Q(W5, V5i4). 


But it must be the case that Q(W/5i) = Q(W5, V5i), since the degree of 
both of these extensions is 6. a 


Theorem 21.10 Let E be a field extension of F. Then the following state- 
ments are equivalent. 
1. E is a finite extension of F. 


2. There exists a finite number of algebraic elements ay,...,QAn © E such 
that E = F(a,...,Qn). 


3. There exists a sequence of fields 
B= PGi. 205) DS Pig adsl) Dae > F(ay) > F, 
where each field F(ay,...,a;) is algebraic over F(ay,...,Qi-1).- 


PRooF. (1) = (2). Let EF be a finite algebraic extension of F'. Then E is a 
finite dimensional vector space over F’ and there exists a basis consisting of 
elements a1,...,@, in E such that F = F(a1,...,@,). Each a; is algebraic 
over F' by Theorem 21.6. 

(2) => (3). Suppose that EF = F(a1,...,Qn), where every a; is algebraic 
over Ff’. Then 


E = F(ay,...,Qn) D F(ai,..-,Q@n-1) D--: D F(a1) D F, 


where each field F(aj,...,a;) is algebraic over F'(aj,..., Qj-1). 
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(3) = (1). Let 
Ee P4565, On) DP (Oty es 45 gt) D2 D Flat) DF, 
where each field F(aj,...,a;) is algebraic over F'(aj,...,@;-1). Since 
Pi @is3 3,05) =F Wig ee 5 OF-1) 04) 
is simple extension and a; is algebraic over F'(a1,...,a;—1), it follows that 


[F(ay,... , Qi) : Pais 304) 


is finite for each i. Therefore, [FE : F' is finite. 


Algebraic Closure 


Given a field F’, the question arises as to whether or not we can find a field 
E such that every polynomial p(x) has a root in E. This leads us to the 
following theorem. 


Theorem 21.11 Let E be an extension field of F. The set of elements in 
E that are algebraic over F' form a field. 


Proor. Let a,( € E be algebraic over F. Then F'(a, () is a finite extension 
of F’. Since every element of F(a, 3) is algebraic over F', a+ 8, a8, and a/ 
(3 £0) are all algebraic over F’. Consequently, the set of elements in EF that 
are algebraic over F' forms a field. 


Corollary 21.12 The set of all algebraic numbers forms a field; that is, the 
set of all complex numbers that are algebraic over Q makes up a field. 


Let F be a field extension of a field F’. We define the algebraic closure 
of a field F' in E to be the field consisting of all elements in FE that are 
algebraic over F’. A field F' is algebraically closed if every nonconstant 
polynomial in F'[z] has a root in F’. 


Theorem 21.13 A field F is algebraically closed if and only if every non- 
constant polynomial in Fx] factors into linear factors over F|z]. 


Proor. Let F' be an algebraically closed field. If p(a) € F'[a] is a nonconstant 
polynomial, then p() has a zero in F’, say a. Therefore, x — a must be a 


21.2. SPLITTING FIELDS 345 


factor of p(x) and so p(x) = (a — a)qi(x), where deg qi(x) = deg p(x) — 1. 
Continue this process with qi(x) to find a factorization 


p(x) = (x — a)(a — B)qa(x), 


where deg q2(x) = deg p(x) — 2. The process must eventually stop since the 
degree of p(x) is finite. 

Conversely, suppose that every nonconstant polynomial p(x) in Fix 
factors into linear factors. Let ax — b be such a factor. Then p(b/a) = 0. 
Consequently, F' is algebraically closed. 


Corollary 21.14 An algebraically closed field F has no proper algebraic 
extension E. 


PRooF. Let FE be an algebraic extension of F’; then F C E. For a € E, the 
minimal polynomial of a is x — a. Therefore, a € F and F = E. 


Theorem 21.15 Every field F has a unique algebraic closure. 


It is a nontrivial fact that every field has a unique algebraic closure. The 
proof is not extremely difficult, but requires some rather sophisticated set 
theory. We refer the reader to [3], [4], or [8] for a proof of this result. 

We now state the Fundamental Theorem of Algebra, first proven by 
Gauss at the age of 22 in his doctoral thesis. This theorem states that 
every polynomial with coefficients in the complex numbers has a root in the 
complex numbers. The proof of this theorem will be given in Chapter 23. 


Theorem 21.16 (Fundamental Theorem of Algebra) The field of com- 
plex numbers is algebraically closed. 


21.2 Splitting Fields 


Let F be a field and p(x) be a nonconstant polynomial in Fz]. We already 
know that we can find a field extension of F' that contains a root of p(z). 
However, we would like to know whether an extension F of F’ containing all 
of the roots of p(x) exists. In other words, can we find a field extension of 
F such that p(x) factors into a product of linear polynomials? What is the 
“smallest” extension containing all the roots of p(x)? 

Let F' be a field and p(x) = ap + aya +--+ + 4,2" be a nonconstant 
polynomial in F'[a]. An extension field E of F is a splitting field of p(x) if 
there exist elements a1,...,Q@, in E such that FE = F(aj,...,@,,) and 


p(#) = (a — a1)(4 — ag) +++ (@ — an). 
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A polynomial p(x) € F|z] splits in E if it is the product of linear factors 
in E[z]. 


Example 10. Let p(x) = x++22?—8 be in Q[z]. Then p(z) has irreducible 
factors 2? — 2 and x? + 4. Therefore, the field Q(V2,i) is a splitting field 
for p(x). (| 


Example 11. Let p(x) = x — 3 be in Q[z]. Then p(z) has a root in the 
field Q(/3). However, this field is not a splitting field for p(x) since the 


complex cube roots of 3, 
-¥B + (93)5i 
y) , 
are not in Q(V3). | 


Theorem 21.17 Let p(x) € F [x] be a nonconstant polynomial. Then there 
exists a splitting field E for p(x). 


Proor. We will use mathematical induction on the degree of p(x). If 
deg p(x) = 1, then p(x) is a linear polynomial and EF = F. Assume that 
the theorem is true for all polynomials of degree k with 1 < k < n and let 
deg p(x) = n. We can assume that p(x) is irreducible; otherwise, by our 
induction hypothesis, we are done. By Theorem 21.1, there exists a field 
K such that p(x) has a zero a, in K. Hence, p(x) = (a — a1)q(x), where 
q(x) € K[x]. Since deg q(x) = n — 1, there exists a splitting field E D> K of 
q(x) that contains the zeros a2,...,@, of p(x) by our induction hypothesis. 
Consequently, 
BK (0012250) =F (ony 2 vey Gq) 


is a splitting field of p(x). 


The question of uniqueness now arises for splitting fields. This question 
is answered in the affirmative. Given two splitting fields kK and L of a 
polynomial p(x) € Fz], there exists a field isomorphism ¢: K — L that 
preserves F’. In order to prove this result, we must first prove a lemma. 


Lemma 21.18 Let 6: E > F be an isomorphism of fields. Let K be an 
extension field of E anda € K be algebraic over E with minimal polynomial 
p(x). Suppose that L is an extension field of F such that 2 is root of the 
polynomial in Fx] obtained from p(x) under the image of ¢. Then ¢ extends 
to a unique isomorphism W : E(a) + F(8) such that v(a) = B and w agrees 
with @ on E. 
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Proor. If p(x) has degree n, then by Theorem 21.5 we can write any 
element in E(q) as a linear combination of 1,a,...,a@” +. Therefore, the 
isomorphism that we are seeking must be 


(ao + aya + +++ + an_10"~") = (a9) + $(a1)B +++ + O(an—1) 8", 


where 


ag + aya +--+ +a,_10"1 


is an element in E(a). The fact that ~ is an isomorphism could be checked by 
direct computation; however, it is easier to observe that y is a composition 
of maps that we already know to be isomorphisms. 

We can extend ¢ to be an isomorphism from E[z] to F'[x], which we will 
also denote by ¢, by letting 


(ap + a,x +++: +an2”") = 6(ap) + d(ar)z +--+ + b(an)x”. 


This extension agrees with the original isomorphism ¢ : EF — F, since 
constant polynomials get mapped to constant polynomials. By assumption, 
o(p(x)) = q(x); hence, @ maps (p(xz)) onto (q(x)). Consequently, we have 
an isomorphism ¢ : E[x]/( p(x)) + F[x]/( q(x)). By Theorem 21.4, we have 
isomorphisms o : E|x]/(p(x)) > F(a) and 7: F[x]/(q(x)) — F(8), defined 
by evaluation at a and £, respectively. Therefore, 1 = 7~'do is the required 
isomorphism. 


Ba) 4 F(B) 
Efel/(p(2)) 2+ Flel/( 


| | 


E = FP 


Sy 
4 


q(x) 


We leave the proof of uniqueness as a exercise. 


Theorem 21.19 Let ¢: E > F be an isomorphism of fields and let p(x) 
be a nonconstant polynomial in E|a| and q(x) the corresponding polynomial 
in F|x| under the isomorphism. If K is a splitting field of p(x) and L is a 
splitting field of q(x), then @ extends to an isomorphism w: K > L. 
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ProoF. We will use mathematical induction on the degree of p(x). We can 
assume that p(x) is irreducible over FE. Therefore, g(x) is also irreducible 
over F’. If deg p(x) = 1, then by the definition of a splitting field, K = E 
and L = F and there is nothing to prove. 

Assume that the theorem holds for all polynomials of degree less than n. 
Since K is a splitting field of F, all of the roots of p(x) are in K. Choose 
one of these roots, say a, such that EF C E(a) C K. Similarly, we can find a 
root @ of q(x) in L such that Fc F(G) c L. By Lemma 21.18, there exists 
an isomorphism ¢: E(a) > F(@) such that ¢(a) = 8 and ¢ agrees with ¢ 
on EF. 


K = L 
E(a) ? 


| 


Now write p(x) = (x— a) f(x) and q(x) = (a — 6)g(x), where the degrees 
of f(x) and g(x) are less than the degrees of p(x) and q(x), respectively. 
The field extension K is a splitting field for f(x) over E(a), and L isa 
splitting field for g(x) over F'(3). By our induction hypothesis there exists 
an isomorphism ~ : K — L such that ~ agrees with ¢ on E(a). Hence, there 
exists an isomorphism w: kK — L such that q agrees with @ on E. 


i 
| 


o 


PF 


Corollary 21.20 Let p(x) be a polynomial in Fx]. Then there exists a 
splitting field K of p(x) that is unique up to isomorphism. 


21.3 Geometric Constructions 


In ancient Greece, three classic problems were posed. These problems are 
geometric in nature and involve straightedge-and-compass constructions from 
what is now high school geometry; that is, we are allowed to use only a 
straightedge and compass to solve them. The problems can be stated as 
follows. 


1. Given an arbitrary angle, can one trisect the angle into three equal 
subangles using only a straightedge and compass? 
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2. Given an arbitrary circle, can one construct a square with the same 
area using only a straightedge and compass? 


3. Given a cube, can one construct the edge of another cube having 
twice the volume of the original? Again, we are only allowed to use a 
straightedge and compass to do the construction. 


After puzzling mathematicians for over two thousand years, each of these 
constructions was finally shown to be impossible. We will use the theory of 
fields to provide a proof that the solutions do not exist. It is quite remarkable 
that the long-sought solution to each of these three geometric problems came 
from abstract algebra. 

First, let us determine more specifically what we mean by a straightedge 
and compass, and also examine the nature of these problems in a bit more 
depth. To begin with, a straightedge is not a ruler. We cannot measure 
arbitrary lengths with a straightedge. It is merely a tool for drawing a line 
through two points. The statement that the trisection of an arbitrary angle 
is impossible means that there is at least one angle that is impossible to 
trisect with a straightedge-and-compass construction. Certainly it is possible 
to trisect an angle in special cases. We can construct a 30° angle; hence, it 
is possible to trisect a 90° angle. However, we will show that it is impossible 
to construct a 20° angle. Therefore, we cannot trisect a 60° angle. 


Constructible Numbers 


A real number a is constructible if we can construct a line segment of 
length |a| in a finite number of steps from a segment of unit length by using 
a straightedge and compass. 


Theorem 21.21 The set of all constructible real numbers forms a subfield 
F of the field of real numbers. 


ProoF. Let a and @ be constructible numbers. We must show that a+ £, 
a— B, a8, and a/8 (8 #0) are also constructible numbers. We can assume 
that both a and £ are positive with a > 6. It is quite obvious how to 
construct a+ 8 and a—{. To find a line segment with length a8, we assume 
that 6 > 1 and construct the triangle in Figure 21.1 such that triangles 
AABC and AADE are similar. Since a/1 = «/8, the line segment x has 
length a8. A similar construction can be made if 6 < 1. We will leave it as 
an exercise to show that the same triangle can be used to construct a/{ for 


6 #0. 
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Figure 21.1. Construction of products 


Lemma 21.22 Ifa is a constructible number, then \/a is a constructible 
number. 


Proor. In Figure 21.2 the triangles AABD, ABCD, and AABC are 


similar; hence, 1/x = x/a, or 2? =a. 


B 


Figure 21.2. Construction of roots 


By Theorem 21.21, we can locate in the plane any point P = (p,q) that 
has rational coordinates p and g. We need to know what other points can 
be constructed with a compass and straightedge from points with rational 
coordinates. 


Lemma 21.23 Let F' be a subfield of R. 


1. Ifaline contains two points in F’, then it has the equation ax+by+c = 0, 
where a, b, and c are in F. 
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2. If a circle has a center at a point with coordinates in F and a radius 
that is also in F, then it has the equation x? + y? + dx +ey+f =0, 
where d, e, and f are in F. 


ProoF. Let (21, y1) and (#2, y2) be points on a line whose coordinates are 
in F. If x; = x2, then the equation of the line through the two points is 
x — x, = 0, which has the form az + by+c= 0. If x1 # x2, then the equation 
of the line through the two points is given by 


y2— Yl 
Yr-UN= (2=4) (@=e1)) 
L2— Ly 


which can also be put into the proper form. 
To prove the second part of the lemma, suppose that (21, y1) is the center 
of a circle of radius r. Then the circle has the equation 


(z— 21)? + (y—m)y?—1? =0. 


This equation can easily be put into the appropriate form. 


Starting with a field of constructible numbers F’, we have three possible 
ways of constructing additional points in R with a compass and straightedge. 


1. To find possible new points in R, we can take the intersection of two 
lines, each of which passes through two known points with coordinates 
in F. 


2. The intersection of a line that passes through two points that have 
coordinates in F and a circle whose center has coordinates in Ff with 
radius of a length in F' will give new points in R. 


3. We can obtain new points in R by intersecting two circles whose centers 
have coordinates in Ff and whose radii are of lengths in F’. 


The first case gives no new points in R, since the solution of two equations 
of the form ax + by +c = 0 having coefficients in F’ will always be in F’. The 
third case can be reduced to the second case. Let 

a+yt+djateyt fi =0 

a +y? + dor t+ ey + fo =0 


be the equations of two circles, where d;, e;, and f; are in F' for i = 1,2. 
These circles have the same intersection as the circle 


e+y%t+dye+ee+ f; =0 
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and the line 
(d, — dz)a + b(e2 — e1)y + (fo — fi) = 9. 


The last equation is that of the chord passing through the intersection points 
of the two circles. Hence, the intersection of two circles can be reduced to 
the case of an intersection of a line with a circle. 

Considering the case of the intersection of a line and a circle, we must 
determine the nature of the solutions of the equations 


ax + by+c=0 
gi t+y*+de+ey+f=0. 
If we eliminate y from these equations, we obtain an equation of the form 


Ax? + Bx + C = 0, where A, B, and C are in F. The x coordinate of the 
intersection points is given by 


—B+V/B?—4AC 
2A 


and is in F(,/a), where a = B? — 4AC > 0. We have proven the following 
lemma. 


= 


Lemma 21.24 Let F be a field of constructible numbers. Then the points 
determined by the intersections of lines and circles in F lie in the field F(./a ) 
for some a in F. 


Theorem 21.25 A real number a is a constructible number if and only if 
there exists a sequence of fields 


Q=FrychMc:::ck 


such that F; = Fi_-1(4/04 ) with a; € F; anda © Fy. In particular, there 
exists an integer k > 0 such that [Q(a) : Q| = 2*. 


PROOF. The existence of the F;’s and the a;,’s is a direct consequence of 
Lemma, 21.24 and of the fact that 


[Fy : Q| = [Fy : Fy 3) [Fe-1 : Fy_9| face [Fy : Q| = a 


Corollary 21.26 The field of all constructible numbers is an algebraic ex- 
tension of Q. 


As we can see by the field of constructible numbers, not every algebraic 
extension of a field is a finite extension. 
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Doubling the Cube and Squaring the Circle 


We are now ready to investigate the classical problems of doubling the cube 
and squaring the circle. We can use the field of constructible numbers to 
show exactly when a particular geometric construction can be accomplished. 
Doubling the cube is impossible. Given the edge of the cube, it is impos- 
sible to construct with a straightedge and compass the edge of the cube that 
has twice the volume of the original cube. Let the original cube have an 
edge of length 1 and, therefore, a volume of 1. If we could construct a cube 
having a volume of 2, then this new cube would have an edge of length W2. 
However, v/2 is a zero of the irreducible polynomial x? — 2 over Q; hence, 


[Q(72) :Q]=3 


This is impossible, since 3 is not a power of 2. 

Squaring the circle is impossible. Suppose that we have a circle of radius 
1. The area of the circle is 7; therefore, we must be able to construct a 
square with side \/z. This is impossible since 7 and consequently \/7 are 
both transcendental. Therefore, using a straightedge and compass, it is not 
possible to construct a square with the same area as the circle. 


Trisecting an Angle 


Trisecting an arbitrary angle is impossible. We will show that it is impossible 
to construct a 20° angle. Consequently, a 60° angle cannot be trisected. We 
first need to calculate the triple-angle formula for the cosine: 


cos 30 = cos(26 + @) 
= cos 26 cos 6 — sin 26 sin 8 
= (2cos” @ — 1) cos@ — 2sin? 6 cos 6 
= (2cos” @ — 1) cos@ — 2(1 — cos” @) cos 
= 4cos? 6 — 3cos 0. 
The angle 6 can be constructed if and only if a = cos @ is constructible. Let 


6 = 20°. Then cos 36 = cos 60° = 1/2. By the triple-angle formula for the 
cosine, 


1 
4a? — 3a = =. 
a a=5 
Therefore, a is a zero of 82° — 62 — 1. This polynomial has no factors in 


Z{x], and hence is irreducible over Q[x]. Thus, [Q(a) : Q| = 3. Consequently, 
a cannot be a constructible number. 
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Historical Note | 


Algebraic number theory uses the tools of algebra to solve problems in number 
theory. Modern algebraic number theory began with Pierre de Fermat (1601-1665). 
Certainly we can find many positive integers that satisfy the equation x? + y? = z?; 
Fermat conjectured that the equation «” + y” = z” has no positive integer solutions 
for n > 3. He stated in the margin of his copy of the Latin translation of Diophantus’ 
Arithmetica that he had found a marvelous proof of this theorem, but that the margin 
of the book was too narrow to contain it. Building on work of other mathematicians, 
it was Andrew Wiles who finally succeeded in proving Fermat’s Last Theorem in the 
1990s. Wiles’s achievement was reported on the front page of the New York Times. 

Attempts to prove Fermat’s Last Theorem have led to important contributions to 
algebraic number theory by such notable mathematicians as Leonhard Euler (1707- 
1783). Significant advances in the understanding of Fermat’s Last Theorem were 
made by Ernst Kummer (1810-1893). Kummer’s student, Leopold Kronecker (1823- 
1891), became one of the leading algebraists of the nineteenth century. Kronecker’s 
theory of ideals and his study of algebraic number theory added much to the 
understanding of fields. 

David Hilbert (1862-1943) and Hermann Minkowski (1864-1909) were among 
the mathematicians who led the way in this subject at the beginning of the twentieth 
century. Hilbert and Minkowski were both mathematicians at Gottingen University 
in Germany. Gottingen was truly one the most important centers of mathematical 
research during the last two centuries. The large number of exceptional mathemati- 
cians who studied there included Gauss, Dirichlet, Riemann, Dedekind, Noether, 
and Weyl. 

André Weil answered questions in number theory using algebraic geometry, a 
field of mathematics that studies geometry by studying commutative rings. From 
about 1955 to 1970, A. Grothendieck dominated the field of algebraic geometry. 
Pierre Deligne, a student of Grothendieck, solved several of Weil’s number-theoretic 
conjectures. One of the most recent contributions to algebra and number theory is 
Gerd Falting’s proof of the Mordell-Weil conjecture. This conjecture of Mordell and 
Weil essentially says that certain polynomials p(x, y) in Z[x,y] have only a finite 


number of integral solutions. 


Exercises 


1. Show that each of the following numbers is algebraic over Q by finding the 
minimal polynomial of the number over Q. 


(a) 4/1/34+ V7 
(b) V34+ V5 
(c) V3+ v2i 
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2. 


12. 
13. 


(d) cos@+isin0@ for 6 = 27/n withn EN 
(c) V2-i 


Find a basis for each of the following field extensions. What is the degree of 
each extension? 


(a) Q(V3, V6) over Q 
(b) Q(7/2, 3) over Q 
(c) Q(V2, 2) over Q 
(d) Q(V3, V5, V7) over Q 
(ec) Q(v2, V2) over Q 
(f) Q(V8) over Q(v2) 
(2) Ol, V2 +i, V3-+6) over Q 
(h) Q(V2 + V5) over Q(V5) 
(i) Q(V2, V6 + V10) over Q(V3 + V5) 
. Find the splitting field for each of the following polynomials. 
(a) x* — 10x? + 21 over Q (c) a3 + 2x +2 over Z3 
(b) 2+ +1 over Q (d) x? —3 over Q 


. Determine all of the subfields of Q(W3, i). 
. Show that Za[z]/(x? + 2+ 1) is a field with eight elements. Construct a 


multiplication table for the multiplicative group of the field. 


. Show that the regular 9-gon is not constructible with a straightedge and 


compass, but that the regular 20-gon is constructible. 


. Prove that the cosine of one degree (cos1°) is algebraic over Q but not 


constructible. 


. Can a cube be constructed with three times the volume of a given cube? 


. Prove that Q(V3, V3, W3,...) is an algebraic extension of Q but not a finite 


extension. 


. Prove or disprove: 7 is algebraic over Q(z). 


. Let p(x) be a nonconstant polynomial of degree n in F'[a]. Prove that there 


exists a splitting field E for p(x) such that [EB : F] < nl. 
Prove or disprove: Q(V2) ~ Q(V3). 
Prove that the fields Q(W3) and Q(¥3%) are isomorphic but not equal. 
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14. 


15. 


16. 


17. 


18. 


19. 


20. 


21. 


22. 


23. 


24. 


25. 
26. 


27. 


CHAPTER 21 FIELDS 


Let K be an algebraic extension of £, and E an algebraic extension of F’. 
Prove that K is algebraic over F’. [Caution: Do not assume that the extensions 
are finite. ] 


Prove or disprove: Z[x]/(a? — 2) is a field. 


Let F be a field of characteristic p. Prove that p(#) = x? — a either is 
irreducible over F or splits in F’. 


Let E be the algebraic closure of a field F'. Prove that every polynomial p(x) 
in F [a] splits in E. 

If every irreducible polynomial p(x) in F[z] is linear, show that F is an 
algebraically closed field. 


Prove that if @ and @ are constructible numbers such that 6 4 0, then so is 
a/p. 

Show that the set of all elements in R that are algebraic over Q form a field 
extension of Q that is not finite. 


Let E be an algebraic extension of a field F’, and let o be an automorphism 
of FE leaving F fixed. Let a € E. Show that o induces a permutation of the 
set of all zeros of the minimal polynomial of a that are in E. 

Show that Q(V3,/7) = Q(V3 + V7). Extend your proof to show that 
Q(Va, Vb) = Ova t Vb), where ged(a,b) = 1. 

Let E be a finite extension of a field F’. If [FE : F] = 2, show that E isa 
splitting field of F. 


Prove or disprove: Given a polynomial p(2) in Z¢[z], it is possible to construct 
a ring R such that p() has a root in R. 


Let E be a field extension of F and a € E. Determine [F(a) : F(a°)]. 


Let a, 6 be transcendental over Q. Prove that either af or a+ 6 is also 
transcendental. 


Let E be an extension field of F and a € E be transcendental over F’. Prove 
that every element in F(a) that is not in F is also transcendental over F’. 
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22 
Finite Fields 


Finite fields appear in many applications of algebra, including coding theory 
and cryptography. We already know one finite field, Z,, where p is prime. In 
this chapter we will show that a unique finite field of order p” exists for every 
prime p, where n is a positive integer. Finite fields are also called Galois 
fields in honor of Evariste Galois, who was one of the first mathematicians 
to investigate them. 


22.1 Structure of a Finite Field 


Recall that a field F has characteristic p if p is the smallest positive integer 
such that for every nonzero element a in F’, we have pa = 0. If no such 
integer exists, then F’ has characteristic 0. From Theorem 16.6 we know that 
p must be prime. Suppose that F is a finite field with n elements. Then 
na = 0 for all a in F. Consequently, the characteristic of F' must be p, 
where p is a prime dividing n. This discussion is summarized in the following 
proposition. 


Proposition 22.1 If F is a finite field, then the characteristic of F' is p, 
where p is prime. 


Throughout this chapter we will assume that p is a prime number unless 
otherwise stated. 


Proposition 22.2 If F is a finite field of characteristic p, then the order 
of F is p” for somen EN. 


Proor. Let ¢: Z — F be the ring homomorphism defined by ¢(n) = n- 1. 
Since the characteristic of F’ is p, the kernel of ¢ must be pZ and the image of 


308 


22.1 STRUCTURE OF A FINITE FIELD 309 


@ must be a subfield of F' isomorphic to Z,. We will denote this subfield by 
K. Since F is a finite field, it must be a finite extension of K and, therefore, 
an algebraic extension of k. Suppose that [F’ : K] =n is the dimension of 
F, where F is a K vector space. There must exist elements a1,...,Q@n € F 
such that any element a in F can be written uniquely in the form 


A= AQ] +++ + Ann, 


where the a;’s are in K. Since there are p elements in K, there are p” possible 
linear combinations of the a;’s. Therefore, the order of F’ must be p”. 


Lemma 22.3 (Freshman’s Dream) Let p be prime and D be an integral 
domain of characteristic p. Then 


aP” + bP” — (a+b)P" 
for all positive integers n. 


PROOF. We will prove this lemma using mathematical induction on n. We 
can use the binomial formula (see Chapter 2, Example 3) to verify the case 


for n = 1; that is, 
P 
(a+b)? = » e ak yp, 


G) -ae 


must be divisible by p, since p cannot divide k!(p—k)!. Note that D is an 
integral domain of characteristic p, so all but the first and last terms in the 
sum must be zero. Therefore, (a + 6)? = a? + BP. 

Now suppose that the result holds for all k, where 1 < k <n. By the 
induction hypothesis, 


If0<k<p, then 


(a+b)? = ((a+b)P)?” = (a? + BPP” = (a?) + (BPP = PP 


Therefore, the lemma is true for n + 1 and the proof is complete. 


Let F be a field. A polynomial f(x) € F[z] of degree n is separable if 
it has n distinct roots in the splitting field of f(a); that is, f(a) is separable 
when it factors into distinct linear factors over the splitting field of f. An 
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extension E of F is a separable extension of F if every element in E is 
the root of a separable polynomial in F[z]. 


Example 1. The polynomial x? — 2 is separable over Q since it factors 
as (« — /2)(a+ V2). In fact, Q(/2) is a separable extension of Q. Let 
a =a-+ by2 be any element in Q(V2). If b= 0, then a is a root of x — a. 
If b #0, then a is the root of the separable polynomial 


a? — 2az + a? — 2b? = (2 — (a + bV2))(x — (a — bV2)). 


Fortunately, we have an easy test to determine the separability of any 
polynomial. Let 
f(z) = a9 + aya +--+ + Gnx” 


be any polynomial in F'[a]. Define the derivative of f(x) to be 
f'(x) = ay + 2age +--+ + nage” !. 


Lemma 22.4 Let F be a field and f(x) € Fla]. Then f(x) is separable if 
and only if f(a) and f'(x) are relatively prime. 


ProoF. Let f(x) be separable. Then f(x) factors over some extension field 
of F as f(x) = (w—ay)(%—ag)---(@—an), where a; 4 a; for i  j. Taking 
the derivative of f(x), we see that 


f'(x) = (@ — a2) -+- (x — an) 
+(e ai)(e—ag)s++ (Gan) 
+++++(%—a1)+++(@ — An_-1). 


Hence, f(x) and f’(a) can have no common factors. 

To prove the converse, we will show that the contrapositive of the state- 
ment is true. Suppose that f(a) = (w—a)*g(a), where k > 1. Differentiating, 
we have 


f’(a) = kw — a)* g(x) + (@ — a) *9/(2). 


Therefore, f(x) and f(a) have a common factor. 


Theorem 22.5 For every prime p and every positive integer n, there exists 
a finite field F with p” elements. Furthermore, any field of order p” is 
isomorphic to the splitting field of x?” — x over Zy. 
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Proor. Let f(x) = x?" — x and let F be the splitting field of f(a). Then by 
Lemma 22.4, f(x) has p” distinct zeros in F, since f’(x) = p’a?"~!—1=-1 
is relatively prime to f(x). We claim that the roots of f(x) form a subfield 
of F. Certainly 0 and 1 are zeros of f(x). If a and £8 are zeros of f(x), 
then a+ 8 and a@ are also zeros of f(x), since a?" + BP" = (a + B)P" 
and a?" 6?" = (aB)?". We also need to show that the additive inverse 
and the multiplicative inverse of each root of f(x) are roots of f(x). For 
any zero a of f(x), —a = (p— 1)a is also a zero of f(x). If a 4 0, then 
(a—)P" = (aP")-! = at. Since the zeros of f(x) form a subfield of F and 
f(a) splits in this subfield, the subfield must be all of F’. 

Let EF be any other field of order p”. To show that E is isomorphic to F’, 
we must show that every element in E is a root of f(x). Certainly 0 is a root 
of f(x). Let a be a nonzero element of E. The order of the multiplicative 
group of nonzero elements of E is p” — 1; hence, a?"~! = 1 or a®" —a=0. 
Since FE contains p” elements, F must be a splitting field of f(x); however, 
by Corollary 21.20, the splitting field of any polynomial is unique up to 
isomorphism. 


The unique finite field with p” elements is called the Galois field of 
order p”. We will denote this field by GF(p”). 


Theorem 22.6 Every subfield of the Galois field GF(p”) has p™ elements, 
where m divides n. Conversely, ifm |n form > 0, then there exists a unique 
subfield of GF(p”) isomorphic to GF(p™). 


Proor. Let F be a subfield of E = GF(p"). Then F must be a field 
extension of K that contains p’ elements, where K is isomorphic to Zp. 
Then m|n, since [EF : K] =[E: FI[F: K]. 

To prove the converse, suppose that m | n for some m > 0. Then p™ — 1 
divides p” —1. Consequently, x?”~!—1 divides 2?"~!—1. Therefore, 2?” — x 
must divide x?" — 2, and every zero of x?" — x is also a zero of x?” — a. Thus, 
GF(p") contains, as a subfield, a splitting field of «?” — x, which must be 
isomorphic to GF(p™). 


Example 2. The lattice of subfields of GF(p*) is given in Figure 22.1. 
| 


With each field F’ we have a multiplicative group of nonzero elements of 
F which we will denote by F*. The multiplicative group of any finite field is 
cyclic. This result follows from the more general result that we will prove in 
the next theorem. 
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Figure 22.1. Subfields of GF(p**) 


Theorem 22.7 If G is a finite subgroup of F*, the multiplicative group of 
nonzero elements of a field F', then G is cyclic. 


ProorF. Let G be a finite subgroup of F* with n = p{' --- p{* elements, where 
p;’s are (not necessarily distinct) primes. By the Fundamental Theorem of 
Finite Abelian Groups (Theorem 13.3), 


~ wane : 
G —— Ze x x Zick 


Let m be the least common multiple of p{!,...,p;*. Then G contains an 
element of order m. Since every a in G satisfies x” — 1 for some r dividing 
m, a must also be a root of 7” — 1. Since x” — 1 has at most m roots in F, 
n <m. On the other hand, we know that m < |G|; therefore, m =n. Thus, 
G contains an element of order n and must be cyclic. 


Corollary 22.8 The multiplicative group of all nonzero elements of a finite 
field is cyclic. 


Corollary 22.9 Every finite extension E of a finite field F is a simple 
extension of F’. 


PrRooF. Let a@ be a generator for the cyclic group E* of nonzero elements of 
E. Then EF = F(a). 


Example 3. The finite field GF(2*) is isomorphic to the field Z2/(1+2+<27*). 
Therefore, the elements of GF(2*) can be taken to be 


{ap + aja + aga? + aga? : a; € Zo and 1+a+a‘ =O}. 
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Remembering that 1+ a+ a* =0, we add and multiply elements of GF(2*) 
exactly as we add and multiply polynomials. The multiplicative group of 
GF(2*) is isomorphic to Z,5 with generator a: 


a =a a& = a®+a3 at = a+a*+a3 

ae = a? a’ = l+a+ae al = Ll+a+o*+a? 
a = a a = 1+0a7 as = 1+a*+a? 

a = Chk a = a+a? Go =: ae 

ae = atd a = 1l+a+a? al = |, 


22.2 Polynomial Codes 


With knowledge of polynomial rings and finite fields, it is now possible 
to derive more sophisticated codes than those of Chapter 7. First let us 
recall that an (n, k)-block code consists of a one-to-one encoding function 
E : Z — Z® and a decoding function D : Z? > Z5. The code is error- 
correcting if D is onto. A code is a linear code if it is the null space of a 
matrix H € Mgxn(Z2). 

We are interested in a class of codes known as cyclic codes. Let ¢ : 
ZK 5 Z® be a binary (n,k)-block code. Then ¢ is a cyclic code if for every 
codeword (a1, a2,...,@n), the cyclically shifted n-tuple (ap, a1, a2,...,;@n—1) 
is also a codeword. Cyclic codes are particularly easy to implement on a 
computer using shift registers [2, 3]. 


Example 4. Consider the (6,3)-linear codes generated by the two matrices 


1 0 0 1 0 0 
0 1 0 1 1 0 
00 1 111 
SIN oii), Se eile ata 
0 1 0 011 
001 001 
Messages in the first code are encoded as follows: 
(000) ++ (000000) (100) ++ (100100) 
(001) ++ (001001) (101) +> (101101) 
(010) ++ (010010) (110) ++ (110110) 
(011) ++ (011011) (lit) (11111), 
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It is easy to see that the codewords form a cyclic code. In the second code, 
3-tuples are encoded in the following manner: 


(000) ++ (000000) (100) +» (111100) 
(001) +» (001111) (101) ++ (110011) 
(010) + (011110) (110) ++ (100010) 
(011) ++ (010001) (111) + (101101). 


This code cannot be cyclic, since (101101) is a codeword but (011011) is not 
a codeword. | 


Polynomial Codes 


We would like to find an easy method of obtaining cyclic linear codes. To 
accomplish this, we can use our knowledge of finite fields and polynomial 
rings over Zp. Any binary n-tuple can be interpreted as a polynomial in 
Zg|x|. Stated another way, the n-tuple (ao, a1,...,@,—1) corresponds to the 
polynomial 
f(x) =ag+aiz+-->+a,-12""1, 

where the degree of f(x) is at most n — 1. For example, the polynomial 
corresponding to the 5-tuple (10011) is 


1+ 02 +02? 4+ 12? +124 =14 224+ 27%. 


Conversely, with any polynomial f(x) € Z2[x] with deg f(x) < n we can 
associate a binary n-tuple. The polynomial x + x? + «* corresponds to the 
5-tuple (01101). 

Let us fix a nonconstant polynomial g(x) in Z2[x] of degree n — k. We can 
define an (n, k)-code C in the following manner. If (ao,...,a@%—1) is a k-tuple 
to be encoded, then f(x) = ag + a12 +--+ + ap_ 2"! is the corresponding 
polynomial in Z |x]. To encode f(x), we multiply by g(x). The codewords in 
C are all those polynomials in Zg[x] of degree less than n that are divisible 
by g(x). Codes obtained in this manner are called polynomial codes. 


Example 5. If we let g(x) = 1+ 2°, we can define a (6, 3)-code C as follows. 
To encode a 3-tuple (ao, a1, a2), we multiply the corresponding polynomial 
f(x) = a9 + a12 + az” by 1+ 23. We are defining a map ¢: Z3 > ZS 
by @: f(x) © g(x)f(x). It is easy to check that this map is a group 
homomorphism. In fact, if we regard Z5 as a vector space over Zo, ¢ is a 
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linear transformation of vector spaces (see Exercise 15, Chapter 20). Let us 
compute the kernel of ¢. Observe that (ag, a1, a2) = (000000) exactly when 


0+ Ox + 0x? + Ox? + Ox* + 02° = (1+ 2*) (ap + az + agx”) 
= a9 + ax + agx? + agx® + ajx* + agx?. 
Since the polynomials over a field form an integral domain, ag + a,x + agx? 
must be the zero polynomial. Therefore, ker ¢ = {(000)} and ¢ is one-to-one. 
To calculate a generator matrix for C’, we merely need to examine the 
way the polynomials 1, x, and x? are encoded: 


(l+a3)-1=1+2° 
4 


(l+2°)e=a4+e 
(l4+a3)o? =a74+2°. 


We obtain the code corresponding to the generator matrix G; in Example 4. 
The parity-check matrix for this code is 


1001 0 0 
H={0 1001 0 
00100 1 


Since the smallest weight of any nonzero codeword is 2, this code has the 
ability to detect all single errors. | 


Rings of polynomials have a great deal of structure; therefore, our imme- 
diate goal is to establish a link between polynomial codes and ring theory. 
Recall that 2” — 1 = (x —1)(2""-!+---+2+1). The factor ring 


Ry = Ze[x]/(x" — 1) 
can be considered to be the ring of polynomials of the form 
f(t) =ao + ait +-+++ anit" 


that satisfy the condition t” = 1. It is an easy exercise to show that Z} and 
R,, are isomorphic as vector spaces. We will often identify elements in Z3 
with elements in Z[x]/(x"—1). In this manner we can interpret a linear code 
as a subset of Z[ax]/(x" — 1). 

The additional ring structure on polynomial codes is very powerful in 
describing cyclic codes. A cyclic shift of an n-tuple can be described by 
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f2- 1 


polynomial multiplication. If f(t) = ag + ajt +--+ + an-1 is a code 


polynomial in R,, then 
t f(t) = an—-1 + apt + +--+ an-2t™? 


is the cyclically shifted word obtained from multiplying f(t) by t. The 
following theorem gives a beautiful classification of cyclic codes in terms of 
the ideals of Ry. 


Theorem 22.10 A linear code C in Z3 is cyclic if and only if it is an ideal 
me = Lele = 1), 


Proor. Let C be a linear cyclic code and suppose that f(t) is in C. 
Then tf(t) must also be in C. Consequently, t* f(t) is in C for all k € 
N. Since C is a linear code, any linear combination of the codewords 
f(t), tft), ?f(b),...,t”-'f (0) is also a codeword; therefore, for every poly- 
nomial p(t), p(t) f(t) is in C. Hence, C is an ideal. 

Conversely, let C’ be an ideal in Z2[x]/(x" + 1). Suppose that f(t) = 
ag + ayt +-+-+ay_1t"~! is a codeword in C. Then tf(t) is a codeword in 
C; that is, (a1,...,@n-1, 49) is in C. 


Theorem 22.10 tells us that knowing the ideals of R, is equivalent to 
knowing the linear cyclic codes in Z}. Fortunately, the ideals in R,, are easy 
to describe. The natural ring homomorphism ¢ : Z2[x] + R, defined by 
¢|f(x)] = f(t) is a surjective homomorphism. The kernel of ¢ is the ideal 
generated by x” — 1. By Theorem 16.15, every ideal C in Ry, is of the form 
(I), where J is an ideal in Zg/z] that contains (x” — 1). By Theorem 17.12, 
we know that every ideal J in Z2[x] is a principal ideal, since Ze is a field. 
Therefore, J = (g(x)) for some unique monic polynomial in Z2[zx]. Since 
(x — 1) is contained in J, it must be the case that g(x) divides x” — 1. 
Consequently, every ideal C' in R,, is of the form 


C= (g(t)) = {f(t)9(t) : F() € Rn and g(x) | (2” — 1) in Za[a]}. 


The unique monic polynomial of the smallest degree that generates C’ is 
called the minimal generator polynomial of C. 


Example 6. If we factor x’ — 1 into irreducible components, we have 
a’ —-1=(1+2)(1+2+2°)(1+2?+2%). 


We see that g(t) = (1 +¢+¢#°) generates an ideal C in R7. This code is a 
(7, 4)-block code. As in Example 5, it is easy to calculate a generator matrix 
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by examining what g(t) does to the polynomials 1, t, t?, and t®. A generator 
matrix for C' is 


Q 

II 
ooordcocrrF 
CoOororrF © 
oF Co = © So 
FPOorRrFOoOO:Co 


In general, we can determine a generator matrix for an (n,k)-code C' by 
the manner in which the elements ¢* are encoded. Let x” — 1 = g(x)h(z) in 
Zo[x]. If g(x) = got git +++: + Gn—na™ * and h(x) = hothyet:--+hgz*, 
then the n x k matrix 


go 0 0 
91 90 0 
G= Gn—k QJn—k-1 go 
0 Gn—k 1 
0 0 Gn-k 


is a generator matrix for the code C with generator polynomial g(t). The 
parity-check matrix for C is the (n — k) x n matrix 


QO -.. Q O hp +: ho 
ga| oe ee ay 
hy --- ho O QO -. Q 


We will leave the details of the proof of the following proposition as an 
exercise. 


Proposition 22.11 Let C = (g(t)) be a cyclic code in R, and suppose that 
x" —1=g(x)h(x). Then G and H are generator and parity-check matrices 
for C, respectively. Furthermore, HG = 0. 


Example 7. In Example 6, 


a’ —1=g(2)h(x) = (14+2+2°)\(14+24 27424). 
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Therefore, a parity-check matrix for this code is 


0010111 
H=j;0 10141410 
101110 0 


To determine the error-detecting and error-correcting capabilities of a 
cyclic code, we need to know something about determinants. If a1,...,an 
are elements in a field F’, then the n x n matrix 


1 1 foes 1 
Q1 a2 An 
at a} wn 
n—-1 n—-1 n-1 

ay 162) eee An 


is called the Vandermonde matrix. The determinant of this matrix is 
called the Vandermonde determinant. We will need the following lemma 
in our investigation of cyclic codes. 


Lemma 22.12 Let aj,...,an be elements in a field F with n > 2. Then 


1 C. se i 
a1 a2 An 
2 2 2 
det | © Og Om | = II (07> 'a;) 
; 1<j<i<n 
n—-1 n—-1 n—-1 
ay as ar 


In particular, if the a;’s are distinct, then the determinant is nonzero. 


PROOF. We will induct on n. If n = 2, then the determinant is ag — a1. Let 
us assume the result for n — 1 and consider the polynomial p(z) defined by 


1 1 1 1 
QA, ag An—1 x 
2 2 2 
p(x) =det} % OD On—1  & 
n—-1 n-1 n-1 n—-1 
Oy oo) nt yy 


Expanding this determinant by cofactors on the last column, we see that 
p(x) is a polynomial of at most degree n — 1. Moreover, the roots of p(x) 
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are Q1,...,Q@y_1, since the substitution of any one of these elements in the 
last column will produce a column identical to the last column in the matrix. 
Remember that the determinant of a matrix is zero if it has two identical 
columns. Therefore, 


p(@) = (@ — a1)(@ — ag) +++ (4 — an—-1)B; 


where 
1 1 1 
a1 a2 cet An—1 
2 2 
B=(-1)" det} % % °° On-1 
n—-2 n-2 n—-2 
Oy Ay On-1 


By our induction hypothesis, 


p=(-1)"™ II (a4 — a,). 


1<j<i<n—-1 


If we let x = Qn, the result now follows immediately. 


The following theorem gives us an estimate on the error detection and 
correction capabilities for a particular generator polynomial. 


Theorem 22.13 Let C = (g(t)) be a cyclic code in Ry and suppose that w 
is a primitive nth root of unity over Zo. If s consecutive powers of w are 
roots of g(x), then the minimum distance of C is at least s +1. 


PROOF. Suppose that 
g(w") = g(t?) =» = g"t*) =0. 


Let f(a) be some polynomial in C with s or fewer nonzero coefficients. We 
can assume that 


f(z) => aj," + aj, 0" ferret ai, 


be some polynomial in C’. It will suffice to show that all of the a;’s must be 
0. Since 
g(w") = g(w"**) = ++. = g(w"t**) =0 


and g(x) divides f(x), 


{(Gy=fe Sse) =0 


370 CHAPTER 22 FINITE FIELDS 


Equivalently, we have the following system of equations: 


Aig (w")*° ae di, (w")4 Bere 8 di,_, (w")'s-1 =f) 


Aig (us +1)% + Aj, (w"t1)%2 feee ai, (wr tt)te-1 = 


Qio (ag? Ft \0 + ai, eames i aa ay, (wr tel ye4 ~ 0. 


Therefore, (@;,,@;,,---,@i,_,) is a solution to the homogeneous system of 
linear equations 


(ws?) ag + (wt) ay +e) + (w1)"ay_1 = 0 


(w*?)"t 135 As (wt)"t12, re (wit) tly 4 —0 


(cg 155 + (wt )rte-1 gy feeet (ajte-1 Pel pg = 0. 


However, this system has a unique solution, since the determinant of the 
matrix 


(wo)? (wt) aes (wis-1)P 
(wioyr+t (Cie ee Coe) 
(ior +51 (wityrts-d si (wisayrts-d 


can be shown to be nonzero using Lemma 22.12 and the basic properties of 
determinants (Exercise). Therefore, this solution must be a;, = aj, =-:: = 
ais = 0. 


BCH Codes 


Some of the most important codes, discovered independently by A. Hoc- 
quenghem in 1959 and by R. C. Bose and D. V. Ray-Chaudhuri in 1960, 
are BCH codes. The European and transatlantic communication systems 
both use BCH codes. Information words to be encoded are of length 
231, and a polynomial of degree 24 is used to generate the code. Since 
231 + 24 = 255 = 28 — 1, we are dealing with a (255, 231)-block code. This 
BCH code will detect six errors and has a failure rate of 1 in 16 million. One 
advantage of BCH codes is that efficient error correction algorithms exist for 
them. 

The idea behind BCH codes is to choose a generator polynomial of 
smallest degree that has the largest error detection and error correction 
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capabilities. Let d = 2r + 1 for some r > 0. Suppose that w is a primitive 
nth root of unity over Zz, and let m;(x) be the minimal polynomial over Z 
of w*. If 

g(x) = lem[m1 (x), ma(z),..., Mar(x)], 
then the cyclic code (g(t)) in R, is called the BCH code of length n and 
distance d. By Theorem 22.13, the minimum distance of C' is at least d. 


Theorem 22.14 Let C = (g(t)) be a cyclic code in R,. The following 
statements are equivalent. 


1. The code C is a BCH code whose minimum distance is at least d. 
2. A code polynomial f(t) is in C if and only if f(w') =0 for 1 <i<d. 


3. The matrix 


1 w uo? ..- wert 
1 wer wt a ; y?—D(2r) 


is a parity-check matrix for C. 


Proor. (1) => (2). If f(t) is in C, then g(x) | f(x) in Ze[zx]. Hence, for 
i=1,...,2r, f(w*) =0 since g(w’) = 0. Conversely, suppose that f(w*) = 0 
for 1 <i<d. Then f(z) is divisible by each m;(x), since m;(x) is the 
minimal polynomial of w’. Therefore, g(x) | f(a) by the definition of g(z). 
Consequently, f(a) is a codeword. 

(2) > (3). Let f(t) = a9 + ajt +--+ +an_ivt”~! be in Ry. The corre- 
sponding n-tuple in Z} is x = (agai ---@n—1)*. By (2), 


ao + ayw +++ +an-1w"} f(w) 
ag tayw? +--+ yt)" f (w?) 
ag + aw" rere ia fio) 


exactly when f(t) is in C. Thus, H is a parity-check matrix for C. 

(3) > (1). By (3), a code polynomial f(t) = ag + ayt + +++ + @n_1t"! is 
in C exactly when f(w’) = 0 for i=1,...,2r. The smallest such polynomial 
is g(t) = lem[mi(t),..., mer(t)]. Therefore, C = (g(t)). 


Example 8. It is easy to verify that 2!’ — 1 € Zo[z] has a factorization 


a —1 = (9 +1)(2? +@41)(2*+e41)(24 +224 1)(e*+e% +07 +241), 
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where each of the factors is an irreducible polynomial. Let w be a root of 
1+2+2+. The Galois field GF(2*) is 


{ag + aw + agw* + agw® : a; € Zo and 1+w+w* = 0}. 


By Example 3, w is a primitive 15th root of unity. The minimal polynomial 
of w is m(z) =1+2+2%. It is easy to see that w? and w* are also roots 
of m1(x). The minimal polynomial of w® is mo(z) =1+a4+a2?4+234 2%. 
Therefore, 
g(x) = my(x)mo(2) = 14+ 2+ 42% 4+ 07428 

has roots w, w?, w?, w*. Since both m1(x) and ma(x) divide x!° —1, the BCH 
code is a (15, 7)-code. If r!° — 1 = g(x)h(z), then h(x) =1+2++2% +27; 
therefore, a parity-check matrix for this code is 


00000001 101 00 0 1 
0000001 101 0 0 0 1 +0 
000001 10100 0 1 0 0 
000011 01000 1 0 0 0 
00011010001 0 0 0 0 
0011010001 0 0 0 0 0 
011010001 0 0 0 0 0 0 
1103100010 0 0 0 0 0 0 
| 
Exercises 
1. Calculate each of the following. 
(a) [GF(3°) : GF(3°)| (c) [GF(625) : GF(25)| 
(b) [GF(128) : GF(16)] (d) [GF(p”) : GF(p”)| 


2. Calculate [GF(p™) : GF(p”)], where n | m. 
3. What is the lattice of subfields for GF(p°)? 


4. Let @ be a zero of x? + x? +1 over Z. Construct a finite field of order 8. 
Show that x* + x? +1 splits in Zo(a). 


5. Construct a finite field of order 27. 
6. Prove or disprove: Q”* is cyclic. 


7. Factor each of the following polynomials in Z2[2]. 
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15. 


16. 


17. 


18. 


19. 


20. 


21. 


22. 


23. 


24. 


(a) 2-1 (c) 2-1 
(b) co +a>+at*tae3 te2?+e41 (dd) ctt+e?+e?4+r4+1 


. Prove or disprove: Za[z]/(x? +2 +1) & Ze[a]/(a3 + x? +1). 
. Determine the number of cyclic codes of length n for n = 6, 7, 8, 10. 


. Prove that the ideal (t+ 1) in R,, is the code in Z} consisting of all words of 


even parity. 


. Construct all BCH codes of 


(a) length 7. (b) length 15. 


. Prove or disprove: There exists a finite field that is algebraically closed. 


. Let p be prime. Prove that the field of rational functions Z,(zx) is an infinite 


field of characteristic p. 


. Let D be an integral domain of characteristic p. Prove that (a —)?” = 


a?" — bP” for all a,b € D. 
Show that every element in a finite field can be written as the sum of two 


squares. 


Let FE and F be subfields of a finite field K. If E is isomorphic to F’, show 
that E = F. 


Let F CEC K be fields. If K is separable over F', show that K is also 
separable over F.. 


Let EF be an extension of a finite field F', where F has gq elements. Let a € E 
be algebraic over F’ of degree n. Prove that F(a) has gq” elements. 


Show that every finite extension of a finite field F is simple; that is, if E is a 
finite extension of a finite field F’, prove that there exists an a € E such that 
E = F(a). 


Show that for every n there exists an irreducible polynomial of degree n 
in Z,[z]. 


Prove that the Frobenius map ¢: GF(p") + GF(p”) given by 6: a> aP 
is an automorphism of order n. 


Show that every element in GF(p”) can be written in the form a? for some 
unique a € GF(p”). 


Let E and F be subfields of GF(p”). If |E| = p” and |F| = p*®, what is the 
order of EN F? 


Wilson’s Theorem. Let p be prime. Prove that (p — 1)! = —1 (mod p). 
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26. 


27. 
28. 


29. 
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. If g(t) is the minimal generator polynomial for a cyclic code C in R,, prove 
that the constant term of g(x) is 1. 


Often it is conceivable that a burst of errors might occur during transmission, 
as in the case of a power surge. Such a momentary burst of interference might 
alter several consecutive bits in a codeword. Cyclic codes permit the detection 
of such error bursts. Let C be an (n,k)-cyclic code. Prove that any error 
burst up to n — k digits can be detected. 


Prove that the rings R,, and Z} are isomorphic as vector spaces. 


Let C be a code in R,, that is generated by g(t). If (f(t)) is another code in 
R,, show that (g(t)) C (f(t)) if and only if f(a) divides g(x) in Za[z]. 
Let C = (g(t)) be a cyclic code in R,, and suppose that 2” — 1 = g(x)h(z), 


where g(x) = go t+ gia t::++Gn—~x"—* and h(x) = ho + hie +--+ +hpa®. 
Define G to be the n x k matrix 


Jo 0 0 
gi go 0 
G=] 9n—k 9Jn—k-1 Jo 
0 Gn-—k J 
0 0 Gn—-—k 


0 0. O° We ho 
ae Oe ee ee 
hy «+: ho 0 0 Ses 0 


(a) Prove that G is a generator matrix for C. 
(b) Prove that H is a parity-check matrix for C. 
(c) Show that HG = 0. 


Additional Exercises: Error Correction for BCH Codes 


BCH codes have very attractive error correction algorithms. Let C be a BCH code 
in R,, and suppose that a code polynomial c(t) = co + cit + +++ + Cn_it”! is 
transmitted. Let w(t) = wo + wit +--+ wp_it” + be the polynomial in R, that is 
received. If errors have occurred in bits a1,...,az, then w(t) = c(t) + e(t), where 
e(t) = t% +¢% +---+t% is the error polynomial. The decoder must determine 
the integers a; and then recover c(t) from w(t) by flipping the a;th bit. From w(t) 
we can compute w(w') = s; for i = 1,...,2r, where w is a primitive nth root of 
unity over Zo. We say the syndrome of w(t) is 1,..., S2r- 
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1. Show that w(t) is a code polynomial if and only if s; = 0 for all 7. 
2. Show that 


ay = w(w") = e(a") = wi + wi? 4. + with 


fori=1,...,2r. The error-locator polynomial is defined to be 
s(a) = (a +w™)(a + 0%) ++ (a@ +0), 


3. Recall the (15, 7)-block BCH code in Example 7. By Theorem 8.3, this code 
is capable of correcting two errors. Suppose that these errors occur in bits a1 
and a2. The error-locator polynomial is s(x) = (w+w%!)(a+w). Show that 


s 
s(t) = 2? +s\0+ (s: + =) : 
1 


4, Let w(t) =14+27+t44+2°+4t74+12!2 +148. Determine what the originally 
transmitted code polynomial was. 
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23) 
Galois Theory 


A classic problem of algebra has been to find the solutions of a polynomial 
equation. The solution to the quadratic equation was known in antiquity. 
Italian mathematicians found general solutions to the general cubic and 
quartic equations in the sixteenth century; however, attempts to solve the 
general fifth-degree, or quintic, polynomial were repulsed for the next three 
hundred years. Certainly, equations such as «° — 1 = 0 or x® — 23 —6=0 
could be solved, but no solution like the quadratic formula was found for the 
general quintic, 


ax + bat + cx? + da? +ex+ f =0. 


Finally, at the beginning of the nineteenth century, Ruffini and Abel both 
found quintics that could not be solved with any formula. It was Galois, how- 
ever, who provided the full explanation by showing which polynomials could 
and could not be solved by formulas. He discovered the connection between 
groups and field extensions. Galois theory demonstrates the strong interde- 
pendence of group and field theory, and has had far-reaching implications 
beyond its original purpose. 

In this chapter we will prove the Fundamental Theorem of Galois Theory. 
This result will be used to establish the insolvability of the quintic and to 
prove the Fundamental Theorem of Algebra. 


23.1 Field Automorphisms 


Our first task is to establish a link between group theory and field theory by 
examining automorphisms of fields. 


Proposition 23.1 The set of all automorphisms of a field F is a group 
under composition of functions. 
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Proor. If o and 7 are automorphisms of EF, then so are or and a~!. The 
identity is certainly an automorphism; hence, the set of all automorphisms 
of a field F’ is indeed a group. 


Proposition 23.2 Let E be a field extension of F. Then the set of all 
automorphisms of E that fic F elementwise is a group; that is, the set of all 
automorphisms 0 : E + E such that o(a) =a for alla € F is a group. 


PROOF. We need only show that the set of automorphisms of F that fix F 
elementwise is a subgroup of the group of all automorphisms of £. Let o 
and 7 be two automorphisms of E' such that o(a@) = a and r(a) = a for all 
a € F. Then ot(a) = o(a) = a and a '(a) =a. Since the identity fixes 
every element of FE, the set of automorphisms of EF that leave elements of F’ 
fixed is a subgroup of the entire group of automorphisms of E. 


Let E be a field extension of F’. We will denote the full group of 
automorphisms of F by Aut(£). We define the Galois group of E over F 
to be the group of automorphisms of EF that fix F’ elementwise; that is, 


G(E/F) = {o € Aut(F) : o(a) = a for alla e€ F}. 


If f(x) is a polynomial in Fz] and E is the splitting field of f(x) over F, 
then we define the Galois group of f(x) to be G(E/F). 


Example 1. Complex conjugation, defined by 0 : a+ bi a — bi, is an 
automorphism of the complex numbers. Since 


o(a) =o(a+0i) =a-Oi=a, 


the automorphism defined by complex conjugation must be in G(C/R). Mf 


Example 2. Consider the fields Q Cc Q(V5) C Q(V3,V5). Then for 
a,b€ Q(V5), 
a(a+bV3) =a—bv3 


is an automorphism of Q(V/3, V5) leaving Q(V5 ) fixed. Similarly, 
r(a+ bv5) =a-bv5 


is an automorphism of Q(V3, V5) leaving Q(V3) fixed. The automorphism 
i. = of moves both V3 and V5. It will soon be clear that {id,o,7, 4} is 
the Galois group of Q(V3, V5) over Q. The following table shows that this 
group is isomorphic to Zo x Zo. 
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| id O09 T Up 
id id o0F T 4p 
a|o id ww T 
T|7T p id o 


wile tT ao id 


We may also regard the field Q(V3,/5) as a vector space over Q that 
has basis {1, /3, V5, V15 }. It is no coincidence that |G(Q(V3, V5 )/Q)| = 
[Q(V3, V5) : Q)] = 4. a 


Proposition 23.3 Let F be a field extension of F and f(x) be a polynomial 
in F{x|. Then any automorphism in G(E/F) defines a permutation of the 
roots of f(x) that lie in E. 


PROOF. Let 
f(z) 09 aye aga ess hae” 


and suppose that a € E is a zero of f(x). Then for o € G(E/F), 


0 = o(0) 
= o(f(a)) 
= o(a9 + aja+ @pee -bxwed Ana”) 


ag + aya(a) + ag[o(a)]? +--+ + an[o(a)]”; 


therefore, 7(@) is also a zero of f(x). 


Let E be an algebraic extension of a field F’. Two elements a, 8 € E are 
conjugate over F if they have the same minimal polynomial. For example, 
in the field Q(V/2) the elements V2 and —\/2 are conjugate over Q since 
they are both roots of the irreducible polynomial x? — 2. 

A converse of the last proposition exists. The proof follows directly from 
Lemma 21.18. 


Proposition 23.4 If a and 6 are conjugate over F, there exists an iso- 
morphism 0 : F(a) + F(8) such that o is the identity when restricted 
to F. 


Theorem 23.5 Let f(x) be a polynomial in Fx] and suppose that EF is the 
splitting field for f(x) over F. If f(x) has no repeated roots, then 


|G(E/F)| = [E: F). 
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ProoF. The proof is similar to the proof of Theorem 21.19. We will use 
mathematical induction on the degree of f(a). If the degree of f(x) is 0 or 1, 
then F = F and there is nothing to show. Assume that the result holds for 
all polynomials of degree k with 0 < k <n. Let p(x) be an irreducible factor 
of f(x) of degree r. Since all of the roots of p(x) are in FE, we can choose one 
of these roots, say a, so that FC F(a) C E. If 8 is any other root of p(x), 
then Fc F(G) C E. By Lemma 21.18, there exists a unique isomorphism 
a: F(a) — F(8) for each such £ that fixes F' elementwise. Since E is a 
splitting field of F'(@), there are exactly r such isomorphisms. We can factor 
p(x) in F(a) as p(x) = (w© — a)pi(x). The degrees of pi(x) and qi(x) are 
both less than r. Since we know that F is the splitting field of p;(x) over 
F(a), we can apply the induction hypothesis to conclude that 


|G(E/F(a))| = [E: F(a). 
Consequently, there are 


[E: FF) =[E: F(a)|[F (a): F] 


possible automorphisms of F that fix F’, or |G(E/F)| =[E: F]. 


Corollary 23.6 Let F be a finite field with a finite extension E such that 
[E: F] =k. Then G(E/F) is cyclic or order k. 


PRooF. Let p be the characteristic of F and F and assume that the orders 
of £ and F are p™ and p”, respectively. Then nk =m. We can also assume 
that E is the splitting field of x?’ — x over a subfield of order p. Therefore, 
E must also be the splitting field of 2?" — 2 over F. Applying Theorem 23.5, 
we find that |G(E£/F)| =k. 

To prove that G(E/F’)) is cyclic, we must find a generator for G(E/F). 
Let o : E > E be defined by o(a) = a”". We claim that a is the element in 
G(E/F) that we are seeking. We first need to show that o is in Aut(E). If 
qa and £ are in LE, 


o(a + B) = (a+ 8) =a?" + BP" = o(a) +0(8) 


by Lemma 22.3. Also, it is easy to show that o(aB) = o(a)o(Z). Since o 
is a nonzero homomorphism of fields, it must be injective. It must also be 
onto, since E is a finite field. We know that o must be in G(E/F), since F 
is the splitting field of 2?” — x over the base field of order p. This means 
that o leaves every element in F' fixed. Finally, we must show that the order 
of o is k. By Theorem 23.5, we know that o*(a) = a?" =a is the identity 
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of G(E/F). However, o” cannot be the identity for 1 < r < k; otherwise, 
a?" — x would have p™ roots, which is impossible. 


Example 3. We can now confirm that the Galois group of Q(V3, V5) 
over Q in Example 2 is indeed isomorphic to Za x Zo. Certainly the group 
H = {id,o,7, w} is a subgroup of G(Q(V3, V5 )/Q); however, H must be all 
of G(Q(V3, V5 )/Q), since 


|H| = (Q(V3, V5) : Q| = |G(Q(v3, v5 )/Q)| = 4. 


Example 4. Let us compute the Galois group of 
f(z) =a*+a +2727 +241 


over Q. We know that f(x) is irreducible by Exercise 19 in Chapter 17. 
Furthermore, since (2 — 1) f(a) = 2° — 1, we can use DeMoivre’s Theorem to 
determine that the roots of f(x) are w’, where i= 1,...,4 and 


w = cos(27/5) + isin(27/5). 


Hence, the splitting field of f(a) must be Q(w). We can define automorphisms 
o; of Q(w) by oj(w) = w* fori =1,...,4. It is easy to check that these are 
indeed distinct automorphisms in G(Q(w)/Q). Since 


[Q@) = Q = |G(QW&)/Q)| = 4, 


the o;’s must be all of G(Q(w)/Q). Therefore, G(Q(w)/Q) = Za since w is a 
generator for the Galois group. | 


Separable Extensions 


Many of the results that we have just proven depend on the fact that a 
polynomial f(x) in F[z] has no repeated roots in its splitting field. It is 
evident that we need to know exactly when a polynomial factors into distinct 
linear factors in its splitting field. Let E be the splitting field of a polynomial 
f(x) in F[z]. Suppose that f(x) factors over E’ as 


Tr 


f(a) = (@ = 01)" (a = 09)" +++ (@ = ay)" = [J (w— 0%)™. 


i=1 
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We define the multiplicity of a root a; of f(x) to be n;. A root with 
multiplicity 1 is called a simple root. Recall that a polynomial f(x) € Fz] 
of degree n is separable if it has n distinct roots in its splitting field EF. 
Equivalently, f(x) is separable if it factors into distinct linear factors over 
E|x]. An extension FE of F is a separable extension of F if every element 
in E is the root of a separable polynomial in Fx]. Also recall that f(z) is 
separable if and only if gcd(f (a), f’(x)) = 1 (Lemma 22.4). 


Proposition 23.7 Let f(x) be an irreducible polynomial over F. If the 
characteristic of F is 0, then f(a) is separable. If the characteristic of F is 
p and f(x) 4 g(x”) for some g(x) in F |x], then f(x) is also separable. 


Proor. First assume that charF = 0. Since deg f’(x) < deg f(x) and 
f(a) is irreducible, the only way gced(f(z), f’(x)) £ 1 is if f’(x) is the zero 
polynomial; however, this is impossible in a field of characteristic zero. If 
charF' = p, then f’(x) can be the zero polynomial if every coefficient of f(x) 
is a multiple of p. This can happen only if we have a polynomial of the form 
f(z) = ag + ay x? + agx*P + ---+anz™. 


Certainly extensions of a field F' of the form F(a) are some of the easiest 
to study and understand. Given a field extension F of F’, the obvious 
question to ask is when it is possible to find an element a € FE such that 
E = F(a). In this case, a is called a primitive element. We already know 
that primitive elements exist for certain extensions. For example, 


Q(v3, V5) = Q(v3 + V5) 


and 


Q(V5, V5i) = Q(V5i). 


Corollary 22.9 tells us that there exists a primitive element for any finite 
extension of a finite field. The next theorem tells us that we can often find a 
primitive element. 


Theorem 23.8 (Primitive Element Theorem) Let E be a finite sepa- 
rable extension of a field F. Then there exists ana € E such that E = F(a). 


PROOF. We already know that there is no problem if F is a finite field. 
Suppose that F is a finite extension of an infinite field. We will prove the 
result for F(a, 3). The general case easily follows when we use mathematical 
induction. Let f(a) and g(x) be the minimal polynomials of a and 8, 
respectively. Let K be the field in which both f(a) and g(x) split. Suppose 
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that f(a) has zeros a = aj,...,Q@p in K and g(x) has zeros 6 = (1,..., 8m 
in k. All of these zeros have multiplicity 1, since E is separable over F’. 
Since F' is infinite, we can find an a in F’ such that 
ay — a 
a a 
* BB; 
for all i and j with 7 A 1. Therefore, a(6 — 6;) A a;—a. Let y= a+ a8. 
Then 
y=ataB £0; +a6;: 
hence, y — a8; # a; for all i,j with 7 # 1. Define h(x) € F(y)[z] by 
h(x) = f(y—azx). Then h(8) = f(a) = 0. However, h(8;) 4 0 for j £1. 
Hence, h(x) and g(x) have a single common factor in F'(y)[x]; that is, the 
irreducible polynomial of 6 over F'(y) must be linear, since ( is the only zero 
common to both g(x) and h(x). So 6 € F(y) and a = y— af is in F(y). 
Hence, F(a, 6B) = F(4). 


23.2 The Fundamental Theorem 


The goal of this section is to prove the Fundamental Theorem of Galois 
Theory. This theorem explains the connection between the subgroups of 
G(E/F) and the intermediate fields between FE and F’. 


Proposition 23.9 Let {o; : 1 € I} be a collection of automorphisms of a 
field F. Then 
Fig, = {a € F: oi(a) =a for all ox} 


is a subfield of F. 


ProoFr. Let o;(a) = a and o;(b) = b. Then 


o(a+b) =o;(a) +0;(b) abo 
and 
o;(ab) = o;(a)o;(b) = ab. 


If a £0, then o;(a~!) = [o;(a)]-' = a7!. Finally, o;(0) = 0 and o;(1) = 1 
since 0; is an automorphism. 


Corollary 23.10 Let F be a field and let G be a subgroup of Aut(F’). Then 
Fg ={a€ F:o(a) =a for alla € G} 
is a subfield of F. 
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The subfield F;,,; of F is called the fixed field of {o;}. The field fixed 
for a subgroup G of Aut(F’) will be denoted by Fg. 


Example 5. Leto: Q(v3, V5) => Q(v3, V5) be the automorphism that 
maps V3 to —/3. Then Q(v5) is the subfield of Q(v3, V5) left fixed by o. 
|_| 


Proposition 23.11 Let E be a splitting field over F' of a separable polyno- 
mial. Then Eqr/r) = F. 


Proor. Let G = G(E/F). Clearly, F C Eg Cc E. Also, E must be a 
splitting field of Eg and G(E/F) = G(E/Eg). By Theorem 23.5, 


\G| = [E: Eg] =[E: FI. 


Therefore, [Eg : F] = 1. Consequently, Eg = F. 


A large number of mathematicians first learned Galois theory from Emil 
Artin’s monograph on the subject [1]. The very clever proof of the following 
lemma is due to Artin. 


Lemma 23.12 Let G be a finite group of automorphisms of E and let 
F=Eg. Then |E: F] < |G|. 


Proor. Let |G] = n. We must show that any set of n + 1 elements 
Q1,---,Qn41 in F is linearly dependent over F’; that is, we need to find 
elements a; € F’, not all zero, such that 


aQy + aQQq + +++ +4n41An41 = 0. 


Suppose that o1 = id,oo,...,@p are the automorphisms in G. The homoge- 
neous system of linear equations 


o1(a4)24 + o1(Q2)x2 fore fb C1 (On tnt =—0 


02(a4)21 + o9(a2)r2 + +++ +02(An41)En41 = 0 


On(a1)£1 + On(Q2)Zo +--+ + 0n(Qn41)2n41 = 0 


has more unknowns than equations. From linear algebra we know that this 
system has a nontrivial solution, say x; = a; for i =1,2,...,n+1. Since o1 
is the identity, the first equation translates to 


ajQy + aQQQ + +++ +4n41An41 = 0. 
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The problem is that some of the a;’s may be in & but not in F’. We must 
show that this is impossible. 

Suppose that at least one of the a,’s is in EF but not in F’. By rearranging 
the a;’s we may assume that a; is nonzero. Since any nonzero multiple of a 
solution is also a solution, we can also assume that a, = 1. Of all possible 
solutions fitting this description, we choose the one with the smallest number 
of nonzero terms. Again, by rearranging a2,...,Q@n41 if necessary, we can 
assume that a2 is in F but not in F’. Since F is the subfield of F that is fixed 
elementwise by G, there exists a 0; in G such that o;(a2) 4 ag. Applying 
o; to each equation in the system, we end up with the same homogeneous 
system, since G is a group. Therefore, 71 = o;(a1) = 1, 2 = oj(a2), ..., 
Lnt1 = Oi(An41) is also a solution of the original system. We know that 
a linear combination of two solutions of a homogeneous system is also a 
solution; consequently, 


z,=1-1=0 


LQ = a2 — 0; (a2) 


Tn4+1 = An+1 — Oj(An41) 


must be another solution of the system. This is a nontrivial solution because 
o;i(a2) # ag, and has fewer nonzero entries than our original solution. This 
is a contradiction, since the number of nonzero solutions to our original 
solution was assumed to be minimal. We can therefore conclude that a; = 


++ =An41 =0. 


Let E be an algebraic extension of F’. If every irreducible polynomial in 
Fx] with a root in E has all of its roots in E, then F is called a normal 
extension of F; that is, every irreducible polynomial in F'[x] containing a 
root in F is the product of linear factors in E[]. 


Theorem 23.13 Let E be a field extension of F. Then the following state- 
ments are equivalent. 


1. E is a finite, normal, separable extension of F. 
2. E is a splitting field over F of a separable polynomial. 


3. F = Eg for some finite group of automorphisms of E. 


Proor. (1) => (2). Let F be a finite, normal, separable extension of F’. By 
the Primitive Element Theorem, we can find an a in E such that F = F(a). 
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Let f(z) be the minimal polynomial of a over F’. The field EF must contain 
all of the roots of f(x) since it is a normal extension F’; hence, F is a splitting 
field for f(z). 

(2) = (3). Let E be the splitting field over F' of a separable polynomial. 
By Proposition 23.11, Eq(g/r) = F. Since |G(E/F)| = [E : F, this is a 
finite group. 

(3) = (1). Let F = Eg for some finite group of automorphisms G of E. 
Since [EF : F] < |G|, E is a finite extension of F’. To show that E is a finite, 
normal extension of F’, let f() € Faz] be an irreducible monic polynomial 
that has a root a in EF. We must show that f(x) is the product of distinct 
linear factors in E|z]. By Proposition 23.3, automorphisms in G permute 
the roots of f(z) lying in FE. Hence, if we let G act on a, we can obtain 
distinct roots a1 = @,Q2,...,Q in E. Let g(x) = []j_,(x — ai). Then g(x) 
is separable over F' and g(a) = 0. Any automorphism o in G permutes the 
factors of g(x) since it permutes these roots; hence, when o acts on g(x), it 
must fix the coefficients of g(a). Therefore, the coefficients of g(x) must be 
in F’. Since deg g(x) < deg f(x) and f(x) is the minimal polynomial of a, 
f(a) = g(x). 


Corollary 23.14 Let K be a field extension of F such that F = K@ for 
some finite group of automorphisms G of K. Then G=G(K/F). 


PROOF. Since F' = Kg, G is a subgroup of G(K/F’). Hence, 


[K : F] <|G| <|G(K/F)| =[K : F). 


It follows that G = G(K/F), since they must have the same order. 


Before we determine the exact correspondence between field extensions 
and automorphisms of fields, let us return to a familiar example. 


Example 6. In Example 2 we examined the automorphisms of Q( V3, V5 ) 
fixing Q. Figure 23.1 compares the lattice of field extensions of Q with the 
lattice of subgroups of G(Q(V3, V5 )/Q). The Fundamental Theorem of 
Galois Theory tells us what the relationship is between the two lattices. Hi 


We are now ready to state and prove the Fundamental Theorem of Galois 
Theory. 


Theorem 23.15 (Fundamental Theorem of Galois Theory) Let F' be 
a finite field or a field of characteristic zero. If E is a finite normal extension 
of F with Galois group G(E/F), then the following statements are true. 
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{id, 0,7, by Q v3, V5) 


ys eis 


{id,o} {adr} {id, wu} Qv3) Qv5) Q(v15) 


NL oa 


{id} Q 


Figure 23.1. G(Q(V3, V5)/Q) 


1. The map K ++ G(E/K) is a bijection of subfields K of E containing 
F with the subgroups of G(E/F). 


2. [fF CK CE, then 


[E : K] =|G(E/K)| and [K : F] =[G(E/F) : G(E/K)]. 


3. FC K CLCE if and only if {td} C G(E/L) C G(E/K) C G(E/F). 


4. K is a normal extension of F if and only if G(E/K) is a normal 
subgroup of G(E/F). In this case 


G(K/F) © G(E/F)/G(E/K). 


Proor. (1) Suppose that G(E/K) = G(E/L) = G. Both K and L are 
fixed fields of G; hence, K = L and the map defined by K + G(E/K) is 
one-to-one. To show that the map is onto, let G be a subgroup of G(E/F) 
and K be the field fixed by G. Then F C Kk C E; consequently, FE is a 
normal extension of K. Thus, G(E/K) = G and the map K + G(E/K) is 
a bijection. 

(2) By Theorem 23.5, |G(E/K)| = [E : K]; therefore, 


|G(E/F)| = [G(E/F) : G(E/K)]-|G(E/K)| = [E: F] =[E: KIRK: Fi. 


Thus, [K : F] = [G(E/F) : G(E/K)|. 

(3) Statement (3) is illustrated in Figure 23.2. We leave the proof of this 
property as an exercise. 

(4) This part takes a little more work. Let K be a normal extension of 
F. If o is in G(E/F) and 7 is in G(E/K), we need to show that o~!ta 
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E {id} 

L G(E/L) 
K G(E/K) 
F G(E/F) 


Figure 23.2. Subgroups of G(F/F’) and subfields of E 


is in G(E/K); that is, we need to show that o~'ta(a) = a for alla € K. 
Suppose that f(x) is the minimal polynomial of a over F’. Then a(a) is 
also a root of f(x) lying in K, since K is a normal extension of F’. Hence, 
T(a(a)) = o(a) or a !ra(a) =a. 

Conversely, let G(E/K) be a normal subgroup of G(E/F’). We need to 
show that F = Kgx/r). Let tT € G(E/K). For all o € G(E/F) there exists 
aT € G(E/K) such that ro = oF. Consequently, for all a € kK 


T(o(@)) = o(7(@)) = oa); 


hence, o(@) must be in the fixed field of G(E/K). Let & be the restriction 
of o to kK. Then @ is an automorphism of K fixing F’, since o(a) € K for 
all a € K; hence, ¢ € G(K/F’). Next, we will show that the fixed field of 
G(K/F) is F. Let 8 be an element in K that is fixed by all automorphisms 
in G(K/F). In particular, o(8) = 8 for all o € G(E/F). Therefore, 6 
belongs to the fixed field F of G(E/F). 

Finally, we must show that when K is a normal extension of F’, 


G(K/F) © G(E/F)/G(E/K). 


For o € G(E/F), let ox be the automorphism of K obtained by restrict- 
ing o to K. Since K is a normal extension, the argument in the preced- 
ing paragraph shows that ox € G(K/F). Consequently, we have a map 
@: G(E/F) > G(K/F) defined by o + ox. This map is a group homomor- 
phism since 


o(0T) = (0T)K = oKTK = O(0) (7). 
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The kernel of ¢ is G(E/K). By (2), 
|G(E/F)|/|G(E/K)| = [Kk : F] = |G(K/F)]. 


Hence, the image of ¢ is G(K/F’) and ¢ is onto. Applying the First Isomor- 
phism Theorem, we have 


G(K/F) © G(E/F)/G(E/K). 


Example 7. In this example we will illustrate the Fundamental Theorem of 
Galois Theory by determining the lattice of subgroups of the Galois group of 
f(x) = a+ — 2. We will compare this lattice to the lattice of field extensions 
of Q that are contained in the splitting field of «* — 2. The splitting field of 
f(x) is Q(W2, 1). To see this, notice that f(a) factors as (1? + /2)(x? — V2); 
hence, the roots of f(x) are +y/2 and +VW2i. We first adjoin the root v2 to 
Q and then adjoin the root i of z? + 1 to Q(W2). The splitting field of f(z) 
is then Q(/2)(é) = Q(W/2,4). 

Since [Q(V2) : Q] = 4 and i is not in Q(W2), it must be the case that 
[(Q(V2, 7) : Q(W2)] = 2. Hence, [Q(72, i) : Q| = 8. The set 


{1, 72, (W2)?, (72), i, i772, i(72)?, 1-72 7} 


is a basis of Q v2, i) over Q. The lattice of field extensions of Q contained 
in Q(V2,7%) is illustrated in Figure 23.3(a). 

The Galois group G of f(x) must be of order 8. Let o be the automorphism 
defined by o(W2) = i¥2 and o(i) =i, and 7 be the automorphism defined 
by complex conjugation; that is, 7(i) = —i. Then G has an element of order 
4 and an element of order 2. It is easy to verify by direct computation that 
the elements of G are {id,o,07,0°,7,07T,077,0°7} and that the relations 
7? = id, ot = id, and rot = a7! are satisfied; hence, G must be isomorphic 
to D4. The lattice of subgroups of G is illustrated in Figure 23.3(b). a 


SiC Mtstorical Note (i) 


Solutions for the cubic and quartic equations were discovered in the 1500s. Attempts 
to find solutions for the quintic equations puzzled some of history’s best mathe- 
maticians. In 1798, P. Ruffini submitted a paper that claimed no such solution 
could be found; however, the paper was not well received. In 1826, Niels Henrik 
Abel (1802-1829) finally offered the first correct proof that quintics are not always 
solvable by radicals. 
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Figure 23.3. Galois group of «+ — 2 


Abel inspired the work of Evariste Galois. Born in 1811, Galois began to display 
extraordinary mathematical talent at the age of 14. He applied for entrance to the 
Ecole Polytechnique several times; however, he had great difficulty meeting the 
formal entrance requirements, and the examiners failed to recognize his mathematical 
genius. He was finally accepted at the Ecole Normale in 1829. 

Galois worked to develop a theory of solvability for polynomials. In 1829, at 
the age of 17, Galois presented two papers on the solution of algebraic equations 
to the Académie des Sciences de Paris. These papers were sent to Cauchy, who 
subsequently lost them. A third paper was submitted to Fourier, who died before 
he could read the paper. Another paper was presented, but was not published 
until 1846. 
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Galois’ democratic sympathies led him into the Revolution of 1830. He was 
expelled from school and sent to prison for his part in the turmoil. After his release 
in 1832, he was drawn into a duel over a love affair. Certain that he would be killed, 
he spent the evening before his death outlining his work and his basic ideas for 
research in a long letter to his friend Chevalier. He was indeed dead the next day, 
at the age of 20. [- 1 


23.3 Applications 


Solvability by Radicals 


Throughout this section we shall assume that all fields have characteristic 
zero to ensure that irreducible polynomials do not have multiple roots. The 
immediate goal of this section is to determine when the roots of a polynomial 
f(a) can be computed in a finite number of operations on the coefficients 
of f(x). The allowable operations are addition, subtraction, multiplication, 
division, and the extraction of nth roots. Certainly the solution to the 
quadratic equation, ax? + bx + c = 0, illustrates this process: 


—b+ Vb? — 4dac 


2a 


i —— 


The only one of these operations that might demand a larger field is the 
taking of nth roots. We are led to the following definition. 

An extension field F of a field F' is an extension by radicals if there 
are elements @1,...,@, € K and positive integers n1,...,n, such that 


B= Fiji ey ie) 


where aj? € F and 
at E F(a4, Bad 4-1) 


for i = 2,...,r. A polynomial f(x) is solvable by radicals over F if the 
splitting field K of f(a) over F’ is contained in an extension of F' by radicals. 
Our goal is to arrive at criteria that will tell us whether or not a polynomial 
f(a) is solvable by radicals by examining the Galois group f(z). 

The easiest polynomial to solve by radicals is one of the form x” — a. As 
we discussed in Chapter 4, the roots of x” — 1 are called the nth roots of 
unity. These roots are a finite subgroup of the splitting field of «” — 1. By 
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Theorem 22.7, the nth roots of unity form a cyclic group. Any generator of 
this group is called a primitive nth root of unity. 


Example 8. The polynomial x” — 1 is solvable by radicals over Q. The 


roots of this polynomial are 1,w,w?,...,w”~!, where 
aac 
Ww = cos | — } +7siIn {| — }. 
n n 
The splitting field of x” — 1 over Q is Q(w). a 


Recall that a subnormal series of a group G is a finite sequence of 
subgroups 


G=Hy Ay DS > Ay DS Ap =—teb 


where H; is normal in H;,;. A subnormal series is a composition series if all 
the factor groups are simple; that is, if none of the factor groups of the series 
contains a normal subgroup. A group G is solvable if it has a composition 
series {H;} such that all of the factor groups H;+4,/H; are abelian. For 
example, if we examine the series {7d} C A3 C 53, we see that A3 is solvable. 
On the other hand, Ss5 is not solvable, by Theorem 10.6. 


Lemma 23.16 Let F be a field of characteristic zero and E be the splitting 
field of x" —a over F witha € F. Then G(E/F) is a solvable group. 


PROooF. First suppose that F’ contains all of its nth roots of unity. The roots 


of x” —a are V/a,w Ya,...,w" + a, where w is a primitive nth root of unity. 
If ¢ is one of these roots, then distinct roots of x” — 1 are ¢,wl,...,w"!C, 


and F = F(¢). Since G(E/F’) permutes the roots «” — 1, the elements in 
G(E/F) must be determined by their action on these roots. Let o and 7 be 
in G(E/F) and suppose that o(¢) = w*¢ and r(¢) = «/¢. If F contains the 
roots of unity, then 


en =ew Ojo) =u (Ser) =r'd) =Te(0). 


Therefore, or = To and G(E/F) is abelian, and G(E/F) is solvable. 
Suppose that F’ does not contain a primitive nth root of unity. Let w be 
a generator of the cyclic group of the nth roots of unity. Let a be a zero of 
x” —a. Since a and wa are both in the splitting field of 2” — a, w = (wa)/a 
is also in F. Let K = F(w). Then F C K C E. Since K is the splitting field 
of x” —1, K is a normal extension of Ff. Any automorphism o in G(F'(w)/F) 
is determined by o(w). It must be the case that o(w) = w* for some integer 7 
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since all of the zeros of x” — 1 are powers of w. If T(w) =u is in G(F(w)/F), 
then 

oT (w) = o(w!) = [o(w)? =" = [r(w)]' = r(w") = row). 


Therefore, G(F(w)/F) is abelian. By the Fundamental Theorem of Galois 
Theory the series 
{id} C G(E/F(w)) C G(E/F) 


is a normal series. Since G(E’/F'(w)) and 


G(E/F)/G(E/F(w)) = GF@)/F) 


are both abelian, G(E’/F’) is solvable. 


Lemma 23.17 Let F be a field of characteristic zero and let E be a radical 
extension of F. Then there exists a normal radical extension K of F that 
contains EF. 


PROOF. Since F is a radical extension of F’, there exist elements a1,...,Q@, € 
K and positive integers nj,...,, such that 


EB = PF Oiys0. pp), 


where a}! € F and 
a," € F(ay, eae Oa) 


for i = 2,...,r. Let f(x) = fi(x)--- f(x), where f; is the minimal poly- 
nomial of a; over F’, and let K be the splitting field of K over F’. Every 
root of f(x) in K is of the form o(a;), where o € G(K/F). Therefore, for 
any 0 € G(K/F), we have [o(a1)|™ € F and [o(a;)]™ € F(a1,...,ai-1) for 
= 205.5%. Hence, it Gl A/F) = {oy = 1d, 09, 30,0, ); then K =o (a) 
is a radical extension of F’. 


We will now prove the main theorem about solvability by radicals. 


Theorem 23.18 Let f(x) be in F[x], where charF = 0. If f(x) is solvable 
by radicals, then the Galois group of f(x) over F is solvable. 


Proor. Let K be a splitting field of f(x) over F. Since f(x) is solvable, 
there exists an extension F of radicals F = Fp C Fi C -:: Fy, = LE. Since F; 
is normal over F;_1, we know by Lemma 23.17 that E is a normal extension 
of each F;. By the Fundamental Theorem of Galois Theory, G(E/F;) is a 
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normal subgroup of G(£/F;_1). Therefore, we have a subnormal series of 
subgroups of G(E/F): 


{id} C G(E/Fn_-1) C--- C G(E/F,) C G(E/F). 
Again by the Fundamental Theorem of Galois Theory, we know that 
G(E/F,_1)/G(E/F;) = G(F;/Fj_-1). 


By Lemma 23.16, G(F;/F;—1) is solvable; hence, G(E/F’) is also solvable. 


The converse of Theorem 23.18 is also true. For a proof, see any of the 
references at the end of this chapter. 


Insolvability of the Quintic 


We are now in a position to find a fifth-degree polynomial that is not solvable 
by radicals. We merely need to find a polynomial whose Galois group is 55. 
We begin by proving a lemma. 


Lemma 23.19 [fp is prime, then any subgroup of S, that contains a trans- 
position and a cycle of length p must be all of Sp. 


Proor. Let G be a subgroup of S, that contains a transposition o and 
T a cycle of length p. We may assume that 0 = (12). The order of + 
is p and rt” must be a cycle of length p for 1 < n < p. Therefore, we 
may assume that pp = 7” = (1273...ip) for some n, where 1 < n < p (see 
Exercise 13 in Chapter 5). Noting that (12)(12i3...i,) = (2i3...i,)) and 
(iz ...%p)¥(12)(2ig ...ip)~* = (lig), we can obtain all the transpositions of 
the form (1n) for 1 < n < p. However, these transpositions generate all 
transpositions in S,, since (1j)(1i)(17) = (27). The transpositions generate 
By 


Example 9. We will show that f(x) = x° — 6x? — 27x — 3 € QJz] is 
not solvable. We claim that the Galois group of f(x) over Q is S5. By 
Eisenstein’s Criterion, f(x) is irreducible and, therefore, must be separable. 
The derivative of f(a) is f’(x) = 5a* — 18x? — 27; hence, setting f’(2) = 0 
and solving, we find that the only real roots of f’(a) are 


2a +, |6V6+9 
= +f. 
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T(t) = —l6a° + 272 — 3 


AQ 


Figure 23.4. The graph of f(x) = x° — 62° — 27x — 3 


Therefore, f(x) can have at most one maximum and one minimum. It is 
easy to show that f(a) changes sign between —3 and —2, between —2 and 0, 
and once again between 0 and 4 (Figure 23.4). Therefore, f(x) has exactly 
three distinct real roots. The remaining two roots of f(a) must be complex 
conjugates. Let K be the splitting field of f(x). Since f(x) has five distinct 
roots in K and every automorphism of K fixing Q is determined by the 
way it permutes the roots of f(x), we know that G(//Q) is a subgroup of 
Ss. Since f is irreducible, there is an element in 0 € G(K/Q) such that 
o(a) = 6 for two roots a and b of f(x). The automorphism of C that takes 
a+ bi + a — bi leaves the real roots fixed and interchanges the complex 
roots; consequently, G(/¢/Q) C S5. By Lemma 23.19, S5 is generated by 
a transposition and an element of order 5; therefore, G(/¢/Q) must be all 
of S5. By Theorem 10.6, S5 is not solvable. Consequently, f(x) cannot be 
solved by radicals. | 
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The Fundamental Theorem of Algebra 


It seems fitting that the last theorem that we will state and prove is the 
Fundamental Theorem of Algebra. This theorem was first proven by Gauss 
in his doctoral thesis. Prior to Gauss’s proof, mathematicians suspected that 
there might exist polynomials over the real and complex numbers having no 
solutions. The Fundamental Theorem of Algebra states that every polynomial 
over the complex numbers factors into distinct linear factors. 


Theorem 23.20 (Fundamental Theorem of Algebra) The field of com- 
plex numbers is algebraically closed; that is, every polynomial in Cia] has a 
root in C. 


For our proof we shall assume two facts from calculus. We need the 
results that every polynomial of odd degree over R has a real root and that 
every positive real number has a square root. 


PROOF. Suppose that FE is a proper finite field extension of the complex 
numbers. Since any finite extension of a field of characteristic zero is a simple 
extension, there exists an a € EF such that FE = C(a) with a the root of an 
irreducible polynomial f(x) in C[z]. The splitting field L of f(x) is a finite 
normal separable extension of C that contains E. We must show that it is 
impossible for L to be a proper extension of C. 

Suppose that L is a proper extension of C. Since L is the splitting field 
of f(x)(x? +1) over R, L is a finite normal separable extension of R. Let K 
be the fixed field of a Sylow 2-subgroup G of G(L/R). Then L > K D> R and 
|G(L/K)| = [L: K]. Since [ZL : R] = [LZ : K][K : R], we know that [K : R] 
must be odd. Consequently, K = R(@) with 6 having a minimal polynomial 
f(x) of odd degree. Therefore, K = R. 

We now know that G(L/R) must be a 2-group. It follows that G(L/C) 
is a 2-group. We have assumed that L 4 C; therefore, |G(L/C)| > 2. By the 
first Sylow Theorem and the Fundamental Theorem of Galois Theory, there 
exists a subgroup G of G(L/C) of index 2 and a field E fixed elementwise 
by G. Then [E: C] = 2 and there exists an element y € E with minimal 
polynomial x? + br +c in C[z]. This polynomial has roots (—b+ Vb? — 4c) /2 
that are in C, since 6? — 4c is in C. This is impossible; hence, L = C. 


Although our proof was strictly algebraic, we were forced to rely on 
results from calculus. It is necessary to assume the completeness axiom from 
analysis to show that every polynomial of odd degree has a real root and 
that every positive real number has a square root. It seems that there is 
no possible way to avoid this difficulty and formulate a purely algebraic 
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argument. It is somewhat amazing that there are several elegant proofs of 
the Fundamental Theorem of Algebra that use complex analysis. It is also 
interesting to note that we can obtain a proof of such an important theorem 
from two very different fields of mathematics. 


Exercises 


Ts 


Compute each of the following Galois groups. Which of these field extensions 
are normal field extensions? If the extension is not normal, find a normal 
extension of Q in which the extension field is contained. 


(a) G(Q(V30)/Q) (d) G(Q(v2, V2, %)/Q) 
(b) G(Q(’5)/Q) 
(c) G(Q(V2, V3, V5 )/Q) (ce) G(Q( V6, i)/Q) 

. Determine the separability of each of the following polynomials. 
(a) 2° + 2x? — x —2 over Q (c) «t+ a7 +1 over Z3 
(b) x* + 2x? +1 over Q (d) 2° +2a2+1 over Zo 


. Give the order and describe a generator of the Galois group of GF(729) 


over GF(9). 


. Determine the Galois groups of each of the following polynomials in Q[z]; 


hence, determine the solvability by radicals of each of the polynomials. 


(a) v° — 122742 (f) (a? — 2)(x? + 2) 
Dee gio 

(d) at -—2? -—6 (h) 2 +1 

(e) 2? +1 (i) 2* — 3x? — 10 


. Find a primitive element in the splitting field of each of the following polyno- 


mials in Q[z]. 


(a) 2-1 (c) a+ — 2x? —15 
(b) at — 8x? +15 (d) 2° -2 


. Prove that the Galois group of an irreducible quadratic polynomial is isomor- 


phic to Zo. 


. Prove that the Galois group of an irreducible cubic polynomial is isomorphic 


to S3 or Z3. 


EXERCISES 397 


8. 


13. 


14. 


15. 
16. 


17. 


18. 


19. 


20. 


Let F CK CE be fields. If E is a normal extension of F’, show that E must 
also be a normal extension of K. 


. Let G be the Galois group of a polynomial of degree n. Prove that |G| 


divides n!. 


. Let F C E. If f(x) is solvable over F’, show that f(x) is also solvable over E. 


. Construct a polynomial f(x) in Q|z] of degree 7 that is not solvable by 


radicals. 


. Let p be prime. Prove that there exists a polynomial f(x) € Q|a] of degree 


p with Galois group isomorphic to S,. Conclude that for each prime p with 
p = 5 there exists a polynomial of degree p that is not solvable by radicals. 


Let p be a prime and Z,(t) be the field of rational functions over Z,. Prove 
that f(x) = x? —t is an irreducible polynomial in Z,(t)[]. Show that f(z) is 
not separable. 


Let E be an extension field of F. Suppose that K and L are two intermediate 
fields. If there exists an element o € G(E/F) such that o(K) = L, then K 
and L are said to be conjugate fields. Prove that K and L are conjugate 
if and only if G(E£/K) and G(E£/L) are conjugate subgroups of G(E/F). 
Let o € Aut(R). If a is a positive real number, show that o(a) > 0. 


Let K be the splitting field of 23 + 2? +1 € Zs[z]. Prove or disprove that K 
is an extension by radicals. 


Let F be a field such that char F # 2. Prove that the splitting field of 
f(x) = ax? + br +c is F(./a), where a = b? — dac. 


Prove or disprove: Two different subgroups of a Galois group will have different 
fixed fields. 


Let K be the splitting field of a polynomial over F’. If E is a field extension 
of F' contained in K and [E: F] = 2, then E is the splitting field of some 
polynomial in F'[2]. 


We know that the cyclotomic polynomial 


$,(z) = =gP 4 gh... tat) 


is irreducible over Q for every prime p. Let w be a zero of &,(), and consider 
the field Q(w). 


(a) Show that w,w?,...,w?7! are distinct zeros of ®,(x), and conclude that 
they are all the zeros of ®,(z). 

(b) Show that G(Q(w)/Q) is abelian of order p — 1. 

(c) Show that the fixed field of G(Q(w)/Q) is Q. 
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22. 
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Let F be a finite field or a field of characteristic zero. Let E be a finite normal 
extension of F' with Galois group G(E/F'’). Prove that F CK CLC E if 
and only if {id} C G(E/L) C G(E/K) C G(E/F). 

Let F be a field of characteristic zero and let f(x) € F[a] be a separable 
polynomial of degree n. If E is the splitting field of f(x), let a 1,...,@, be the 
roots of f(x) in E. Let A=[]J,,,(ai — aj). We define the dtscriminant 
of f(x) to be A?. 


(a) If f(x) = ax? + br +c, show that A? = b? — 4ac. 
( 


b) If f(x) = 23 + px + q, show that A? = —4p3 — 27q?. 

(c) Prove that A? is in F. 

(d) If o € G(E/F) is a transposition of two roots of f(x), show that 
a(A) = —-A. 

(e) If o € G(E/F) is an even permutation of the roots of f(x), show that 
ao(A) =A. 

(f) Prove that G(E/F) is isomorphic to a subgroup of A,, if and only if 
Doe, 


(g) Determine the Galois groups of x? + 2x — 4 and 2° + 2-3. 
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Hints and Solutions 


Chapter 1. Preliminaries 


1. 
2: 


6. 


10. 


14. 


17. 


18. 


20. 
22. 


23. 
24. 


(a) {2}. (b) {5}. 

(a) {(4, 1), (@, 2), (a, 3), (6, 1), (6, 2), (6, 3), (6D, (6,2), (6 3)}- 

(d) 0. 

Ifa € AU(BNC), then either x € Aorx € BNC >a € AUB and AUC => 
x €(AUB)N(AUC) => AU(BNC) Cc (AUB)N(AUC). 

Conversely, c € (AUB)N (AUC) > 2¢€ AUBand AUC Sze 
A or x is in both B and C= x € AU(BNC) = (AUB)N(AUC) Cc AU(BNC). 
Hence, AU(BNC) =(AUB)N(AUC). 

(An B)U(A\ B)U(B\ A) = (AN B)U(ANB)U(BNA’) = [AN (BU 
B’))U (BN A’) = AU(BN A’) = (AUB)N(AUA') = AUB. 

A\ (BUC)=AN(BUCY = (AN A)N(B'NC) = (ANB) N(ANC) = 
(A\ B)N(A\C). 

(a) Not a map. f(2/3) is undefined. 

(c) Not a map. f(1/2) = 3/4 and f(2/4) = 3/8. 

(a) One-to-one but not onto. f(R) = {x eR: a> 0}. 

(c) Neither one-to-one nor onto. 


(a) f(n) =n+1. 
(a) Let x,y € A. Then g(f(x)) = (g0 f)(x) = (90 f)(y) = 9( f(y) > F(x) = 
f(y) > 2=y, so go f is one-to-one. 


(b) Let c € C, then c= (go f)(x) = g(f(x)) for some x € A. Since f(x) € B, 


f-"(@) = («@+1)/(@- 1). 
(a) Let y € f(A; U Ag) => there exists an « € A; U Ag such that f(x) 


=y> 
y € f(A) or f(A2) > y € f(A1) U f(A2) > f(A U Ae) C f(A1) U f(A2). 
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25. 


28. 
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Conversely, let y € f(A1) U f(A2) > y © f(A1) or f(A2) => there exists 
an x € A, or there exists an 7 € Ag such that f(x) = y = there exists an 
x € Ay U Ape such that f(x) = y > f(A) U f(A2) C f(Ai U Ag). Hence, 
f(A1 U Ag) = f(A1) U f (Ae). 


(a) Not an equivalence relation. Fails to be symmetric. 
(c) Not an equivalence relation. Fails to be transitive. 


Let X =NU {1/2} and define x ~ y ifa+y EN. 


Chapter 2. The Integers 


1. 


11. 


15. 


17. 


19. 
23. 


27. 


29. 


S(1) : [10 + 1)(2(1) + 1)]/6 = 1 = 1? is true. Assume $(k) : 12 +2? 4+---+ 
k? = [k(k + 1)(2k + 1)]/6 is true. Then 1? + 2? +---+k? + (k +1)? = 
[k(k + 1)(2k + 1)]/6+ (k +1)? = [(k+1)((k +1) +1)(2(k +1) + 1)]/6, so 
S(k +1) is true. Thus S(n) is true for all positive integers n. 


. 9(4) : 4! = 24 > 16 = 2+ is true. Assume S(k) : k! > 2* is true. Then 


(k+1)!=ki(k+1) > 2*.2=2*+! so $(k +1) is true. Thus S(n) is true for 
all positive integers n. 


. Look at the proof in Example 3. 


S(0):(1+2)°-1=0>0=0-z is true. Assume S(k) : (1+2)* -1> kz is 
true. Then (1+2)**1-1=(1+2)(1+2)f -1l=(1+2)*+2(1+2)*-1> 
kn +a(1+2)* > ka +2 =(k+1)z, so S(k +1) is true. Thus $(n) is true 
for all positive integers n. 

(a) (14)14 + (—5)39 = 1. 

(c) (3709)1739 + (—650)9923 = 1. 

(e) (881)23771 + (—1050)19945 = 1. 


(b) Use mathematical induction. (c) Show that fi; = 1, fe =1, and frye = 
fnii + fn. (d) Use part (c). (e) Use part (b) and Problem 16. 


Use the Fundamental Theorem of Arithmetic. 


Let S={s€N:a]|s,b|s}. S 49, since |ab| € S. By the Principle of 
Well-Ordering, S contains a least element m. To show uniqueness, suppose 
that a |n and b|n for some n € N. By the division algorithm, there exist 
unique integers g and r such that n = mq+r, where 0 <r <m. a|m, b|m, 
a|n,b|n=>a\|r,b|r=>r=O0 by the minimality of m. Therefore, m | n. 


Since gcd(a,b) = 1, there exist integers r and s such that ar + bs = 1 > 
acr + bcs = c. Since a| a and a| bc, alc. 


Let p = pypo:-:Ppy +1, where py = 2, po = 3,...,px are the first k primes. 
Show that p is prime. 
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Chapter 3. Groups 


ar 
2 
6. 


24. 


30. 
34. 


40. 


45. 
48. 


BY Gp DANO Csi ies 18 A Ma 8 oe Ais te 


(a) Not a group. (c) A group. 
. 1 5 7 lil 
1 i 5 7 Il 
5) 5 1 11 7 
|v. AL a 5 
11} 11 7 #5 1 


. Pick two matrices. Almost any pair will work. 

. There is a group of order 6 that is nonabelian. 

. Look at the symmetry group of an equilateral triangle or a square. 
. There are actually five different groups of order 8. 


. Let 


G Dy haste _ 
Oa 
ay a2 eee An 


be in S,. All of the a;’s must be distinct. There are n ways to choose ay, 
n — 1 ways to choose ag, ..., 2 ways to choose a,_1, and only one way to 
choose a,,. Therefore, we can form o in n(n — 1)---2-1 =n! ways. 


(aba~')”" = (aba~')(aba~') --- (aba~+) = ab(aa~')b(aa~!)b--- (aa~*)ba~* = 


ab"a-'. 
abab = (ab)? = e = a?b? = aabb => ba = ab. 


Ay = {id}, Hz = {id, pi, p2}, H3 = {td, ui}, Ha = {id, wo}, Hs = {id, 3}, 
S3. 


id =1=14+ 0v2, (a+ bV2)(c + dV2) = (ac + 2bd) + (ad + be)/2, and 
(a+ b/2)-1 = a/(a? — 2b?) — b\/2/(a? — 267). 


Not a subgroup. Look at S3. 


a*b = ba > b = a®b = a2ba = ab = a®ba = ba. 


Chapter 4. Cyclic Groups 


1. 
2. 
3. 


(a) False. (c) False. (e) True. 
a) 12. (c) Infinite. (e) 10. 


( 

(a) 7Z ={...,—7,0,7,14,...}. (b) {0,3, 6,9, 12, 15, 18, 21}. 
(c) {0}, {0, 6}, {0, 4, 8}, {0, 3, 6, 9}, {0, 2,4, 6, 8, 10}. 

(g) {1,3,7,9}. Gj) {1,—-1,4, —d}. 


31. 


37. 
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AG S)-G 9) o), 


a) 0,1,—1. (b) 1,-1. 


. 1, 2, 3, 4, 6, 8, 12, 24. 


a) 3i — 3. (c) 43 — 18%. (e) @. 
a) V3 +i. (0) -3. 

a) V2 cis(77/4). (c) 2/2 cis(1/4). (e) 3 cis(37/2). 
a) (1—1)/2. (c) 16(i— V3). (e) —1/4. 

a) 292. (c) 1523. 

(9) (h)| = 1. 


The identity element in any group has finite order. Let g,h € G have orders 
m and n, respectively. Since (g~!)™ = e and (gh)™” = e, the elements of 
finite order in G form a subgroup of G. 


If g is an element distinct from the identity in G, g must generate G; otherwise, 
(g) is a nontrivial proper subgroup of G. 


Chapter 5. Permutation Groups 


11. 


17. 
25. 
30. 


BO. Ne RS 


a) (12453). (c) (13)(25). 

a) (135)(24). (c) (14)(23). (e) (1324). (g) (134)(25). (nm) (17352). 
a) (16)(15)(13)(14). (c) (16)(14)(12). 

@1,An,Qn—1,---, 42). 

a) {(13), (13)(24), (132), (134), (1324), (1342)}. Not a subgroup. 
12345) (678). 


Permutations of the form (1), (a1, 4@2)(a3, a4), (41, @2,43), (@1, G2, a3, G4, As) 
are possible for As. 


(123)(12) = (18) ¥ (23) = (12)(123). 
Use the fact that (ab)(bc) = (abc) and (ab)(cd) = (abc) (bcd). 
(a) Show that ora~1(i) = (a(a1), o(a2),...,7(ax))(i) for 1 <i<n. 
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Chapter 6. Cosets and Lagrange’s Theorem 


1. 


oa FF wo bd 


17. 


The order of g and the order h must both divide the order of G. The smallest 
number that 5 and 7 both divide is lem(5,7) = 35. 


. 1,2,3,4,5, 6, 10, 12, 15, 20, 30, 60. 


. False. 
. False. 
. (a) H = {0,8,16} 4+H = {4,12,20} 
1+H =({1,9,17} 5+H = {5,13,21} 
2+H = {2,10,18} 6+H = {6,14, 22} 
3+H = {3,11,19} T+HAH = {7,15, 23}. 
(c) 3Z = {...,—3,0,3,6,...} 


1b 82 a4 vig 8, 1/4, 7,004 
Pt BZ = {2 —1; 2,558, .. 04. 


_ 4905) = 48 = 1 (mod 15). 
12; 


Let g: € gH. Then there exists an h € H such that g, = gh = ghg-'g > 
gy. € Hg=> gH C Hg. Similarly, Hg C gH. Therefore, gH = Hg. 

Ifa¢ H, thena~! ¢ H >a~' €aH =a"'H = 0H = there exist hi,h2 € H 
such that a~'hy = bhy > ab=hyhy' € H. 


Chapter 7. Introduction to Cryptography 


. LAORYHAPDWK. 
. Hint: Q=E,F =X,A=R. 


26! — 1. 


. (a) 2791. (c) 112135 25032 442. 
. (a) 31. (c) 14. 
. (a) 2 =11-41. (c) n = 8779 - 4327. 


Chapter 8. Algebraic Coding Theory 


2 
3 
4 
6 


. (0000) ¢ C. 
a) 2. (c) 2. 
a) 3. (c) 4. 
a) dmin —2. (c) dmin =1. 


eG 
-( 
x 
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7. (a) (00000), (00101), (10011), (10110) 


Q 

II 
et 
ere OOF 


FOrRrFOF 
RePrRrE OF © 


9. Multiple errors occur in one of the received words. 


11. (a) A canonical parity-check matrix with standard generator matrix 


D 
lI 
FOOrREH 


1 0 
0 1 
Oe: Log 
1 0 
12. (a) All possible syndromes occur. 
15. (a) The cosets of C' are 
Cosets 
C (00000) (00101) (10011) (10110) 
(10000) + C | (10000) (10101) (00011) (00110) 
(01000) + C | (01000) (01101) (11011) (11110) 
(00100) + C | (00100) (00001) (10111) (10010) 
(00010) + C | (00010) (00111) (10001) (10100) 
(11000) + C | (11000) (11101) (01011) (01110) 
(01100) + C | (01100) (01001) (11111) (11010) 
(01010) + C | (01010) (01111) (11001) (11100) 
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A decoding table does not exist for C' since it is only single error-detecting. 


19. Let x € C’ have odd weight and define a map from the set of odd codewords 
to the set of even codewords by y+ x+y. Show that this map is a bijection. 


23. For 20 information positions, at least six check bits are needed to ensure an 
error-correcting code. 


Chapter 9. Isomorphisms 


1. The group nZ is an infinite cyclic group generated by n. Every infinite cyclic 
group is isomorphic to Z. 


2. Define ¢: C* + GL2(R) by 


3. False. 
6. Define a map from Z,, into the nth roots of unity by k > cis(2km/n). 
8. Assume that Q is cyclic and try to find a generator. 

11. Da, Qs, Zs, Za x Za, Zo X Ze x Zo. 

16. (a) 12. (c) 5. 

20. True. 

25. Zg x Zo x Zy3 is not cyclic. 


27. Let a be a generator for G. If 6: G > H is an isomorphism, show that ¢(a) 
is a generator for H. 


38. Any automorphism of Zg must send 1 to another generator of Ze. 


45. To show that ¢ is one-to-one, let g; = hiky and go = hoke. Then ¢(g1) = 
(92) > O(hiki) = O(hak2) => (hi, k1) = (he, ko) > hi = hosky = ko => 
gi = 92- 


Chapter 10. Normal Subgroups and Factor Groups 


1. (a) | Ag (12)Aa 
Ai Ay (12) Ay 
(12) A | (12)Aa Ag 


(c) D4 is not normal in S4. 


8. Ifa € Gis a generator for G, then aH is a generator for G/H. 
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13. 


15. 
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Since eg = ge for all g € G, the identity is in C(g). If z, y € C(g), then ryg = 
roy = gxy > zy € C(g). If xg = gz, then 2 1g = gx! > 2 1 € Cig) => 
C(g) is a subgroup of G. If (g) is normal in G, then gixg;'g = ggivg,- for 
all g1 € G. 


(a) Let g € Gand he G’. If h=aba~'b~", then ghg—! = gaba“'b-'g-t = 
(gag~*)(gbg~*)(ga~*g~")(gb-*g-*) = (gag~*)(gbg~")(gag~*)~*(gbg~*)-*. 
We also need to show that if h = hy---hn with h; = ajbja; 1b; ', then ghg7! 
is a product of elements of the same type. However, ghg~! = ghi---hng~t = 
(ghig')(ghag*)- + (ghng~*). 


Chapter 11. Homomorphisms 


2s 
4, 


(a) A homomorphism. (c) Not a homomorphism. 


o(m+n) = 7(m+n) = 7+ 7n = o(m) + O(n). The kernel of ¢ is {0} and 
the image of ¢ is 7Z. 


. For any homomorphism @¢ : Z24 — Zig, the kernel of ¢ must be a subgroup of 


Zo4 and the image of @ must be a subgroup of Zjs8. 


. Let a,b € G. Then ¢(a)¢(b) = (ab) = o(ba) = o(b) g(a). 


Chapter 12. Matrix Groups and Symmetry 


Is 


5 [lx + yl? + Ibe? — liv?) = 5 [e+ ye +y) ~ Ibe? — lly] 
5 Ulbxll? + 2¢0,y) + yl? — ll? — II? 


= (x,y). 


. (a) An element of SO(2). (c) Not in O(3). 
- (a) (X,Y) = B1y1 Fo + EnYn = YiT1 + +++ + YnTn = (Y,X). 


. Use the unimodular matrix 


(> 1) 


. Show that the kernel of the map det : O(n) + R* is SO(n). 
13. 
17. 


True. 


pom. 
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Chapter 13. The Structure of Groups 


1. 


16. 
21. 


Since 40 = 2° - 5, the possible abelian groups of order 40 are Zy9 X Zg Xx Zs, 
Zs X Za X Zo, and Zs x Ze x Z2 X Zo. 


. (a) {0} Cc (6) C (3) C Zia. 


(e) {((1),0)} € {(1), (128), (182)} x {O} C Ss x {0} C $3 x (2) C S3 x Za. 


. Use the Fundamental Theorem of Finitely Generated Abelian Groups. 
12. 


If N and G/N are solvable, then they have solvable series 


N = Nn D Nn-1 D-+: D Ni D No = {e} 
G/N =Gn/N D Gn-1/N D-+-Gi/N D Go/N = {N}. 


The series 


G=GnDGn-1D-+::D Gp =N=N,y > Nn—-1 D:+:: D Ny > No = {e} 


is a subnormal series. The factors of this series are abelian since Gj41/G; = 
(Gi4i/N)/(Gi/N). 

Use the fact that D, has a cyclic subgroup of index 2. 

G/G’ is abelian. 


Chapter 14. Group Actions 


1. 


Example 1. 0, R? \ {0}. 
Example 2. X = {1,2,3,4}. 


. (a) Xqay = {1, 2,3}, X12) = {3}, X13) = {2}, X23) = {1}, X(123) = X(132) = 


0. Gi = {(1), (23)}, G2 = {(1), (13) }, Gs = {(1), (12)}. 


‘ (a) O71 => Oz => O3 => {1, 2,3}. 
- (a) Oa) = {)F, Oa2) = (12), (13), 14), (28), (24), (84) F, 


), 
O(12)(34) = {(12)(34), (13)(24), (14) (23) }, 
O(i2a) = {(123), (132), (124), (142), (134), (143), (234), (243)}, 
Ov1234) = {(1234), (12438), (1324), (1842), (1423), (1432) }. 
The class equation is 1+3+6+6+8 = 24. 


. (84431 4.3? 4+ 31 4 3? 4 3? + 3% + 39)/8 = 21. 
. (1.3446. 39 + 11-3? +6-31)/24 = 15. 

. (1-28 43-2444-23 42-2? 4+2-21)/12 = 13. 
. (1-28 + 3-26 + 2-24)/6 = 80. 


. 2 € gCla)g'' —> g ‘ag € C(a) — > ag'ag = g-'xga —> gag '« = 


agag_| => 2 € C(gag™'). 
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Chapter 15. The Sylow Theorems 


1. 


10. 
17. 
23. 


26. 


If |G| = 18 = 2- 3?, then the order of a Sylow 2-subgroup is 2, and the order 
of a Sylow 3-subgroup is 9. 

If |G| = 54 = 2- 3°, then the order of a Sylow 2-subgroup is 2, and the order 
of a Sylow 3-subgroup is 27. 


. The four Sylow 3-subgroups of S4 are 


P= 1), (123), (132) }, 
P= {(1), (124), (142)}, 
P3= 10); (134), (143)}, 
P, = {(1), (234), (243)}. 


. Since |G| = 96 = 2° - 3, G has either one or three Sylow 2-subgroups by the 


Third Sylow Theorem. If there is only one subgroup, we are done. If there 
are three Sylow 2-subgroups, let H and K be two of them. |HM K| > 16; 
otherwise, Hk would have (32 -32)/8 = 128 elements, which is impossible. 
HK is normal in both H and K since it has index 2 in both groups. Hence, 
N(HOK) contains both H and K. Therefore, |N(HM)| must be a multiple 
of 32 greater than 1 and still divide 96, so N(HN K) =G. 


. G has a Sylow q-subgroup of order q?. Since the number of such subgroups is 


congruent to 1 modulo q and divides p”q?, there must be either 1, p, or p? 


Sylow q-subgroups. Since q/p? — 1 = (p— 1)(p + 1), there can be only one 
Sylow q-subgroup, say Q. Similarly, we can show that there is a single Sylow 
p-subgroup P. Every element in Q other than the identity has order q or q’, 
so PQ = {e}. Now show that hk = kh for h € P and k € Q. Deduce that 
G = Px Q is abelian. 


False. 
If G is abelian, then G is cyclic, since |G] = 3-5-17. Now look at Example 5. 


Define a mapping between the right cosets of N(#) in G and the conjugates 
of H in G by N(H)g g7!Hg. Prove that this map is a bijection. 

Let aG’,bG’ € G/G’. Then (aG’)(bG") = abG’ = ab(b-1a~1ba)G’ = 
(abb-ta~')baG"’ = baG’. 


Chapter 16. Rings 


1. 
3. 


4, 


(a) 7Z is a ring but not a field. (c) Q(V2) is a field. (f) R is not a ring. 
(a) {1,3,7,9}- (oe) {1,2,3,4,5,6}. 


00 Co )-G 9G o)-G Gf 


(a) {O}, {0,9}, {0,6,12}, {0,3,6,9, 12,15}, {0,2, 4,6, 8, 10, 12, 14, 16}. 
(c) There are no nontrivial ideals. 
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Ge 
8. 


13. 
16. 
19. 
27. 


29. 
35. 


39. 


Assume there is an isomorphism ¢: C > R with ¢(i) = a. 


False. Assume there is an isomorphism ¢ : Q(/2) > Q(V3) such that 
o(V2) = a. 


(a) ¢ =17 (mod 55). (c) # = 214 (mod 2772). 
If I A {0}, show that 1 € I. 
(a) $(a) (0) = o(ab) = o(ba) = o(0)6(a). 


Let a € R with a 0. The principal ideal generated by a is R => there exists 
abe€ R such that ab=1. 


Compute (a + 6)? and (—ab)?. 
Let a/b,c/d € Zp. Then a/b+c/d= (ad + bc)/bd and (a/b) - (c/d) = 
(ac)/(bd) are both in Zip), since gcd(bd, p) = 1. 


Suppose that 2? = x and x £0. Since R is an integral domain, x = 1. To 
find a nontrivial idempotent, look in M2(R). 


Chapter 17. Polynomials 


2. 
3. 


5. 


19. 
25. 


(a) 9x? + 22 +5. (b) Sat + 7x3 + Qn? + Te. 


(a) 5a3 + 62? — 82 +4 = (5472x7 + 1)(x — 2) + 6. 
(c) 4a° — a3 +? +4 = (4x? + 4) (x? + 3) + 4a? +2. 


a) No zeros in Zy9. (c) 3, 4. 
Qe +1)? =1. 


( 
( 


. (a) Reducible. (c) Irreducible. 

. 2% +048 = (r42)\(2+9) =(@+7)(x +4). 

. Zis not a field. 

. False. a? +1 = (4 +1)(x +1). 

. Let ¢: R > S be an isomorphism. Define ¢: R[x] > S[x] by é(ao + aya + 


“+++ nx”) = b(a0) + O(ai)a +--+ + O(an)a”. 
Define g(x) by g(x) = ®,(x +1) and show that g(x) is irreducible over Q. 


Find a nontrivial proper ideal in F'[a]. 
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Chapter 18. Integral Domains 
1. 27! = 1/(a + bV3i) = (a — bV3i)/(a? + 3d?) is in Z[/37] if and only if 


a? + 3b? = 1. The only integer solutions to the equation are a = +1,b =0. 
2. (a) 5 =1+42%)(1 — 2%). (c) 64+ 81 = (-14 7)(1 — 2). 
4. True. 


9. Let z=a+bi and w=c+di 40 be in Zi]. Prove that z/w € Q(2). 
15. Let a = ub with u a unit. Then v(b) < v(ub) < v(a). Similarly, v(a) < (0). 


16. Show that 21 can be factored in two different ways. 


Chapter 19. Lattices and Boolean Algebras 


2: 
30 
a 
10 15 
2 5 3 
ce a 
1 
5. False. 
6. (a) (aVbVa') Aa. 
a 
b a 
a’ 
(c) aV (aA b). 
a b 
a 


8. Not equivalent. 
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10. a’ A [(aAb') Vb] =a (avod). 


15. Let I, J be ideals in R. We need to show that [+ J = {r+s:réIandse€ J} 
is the smallest ideal in R containing both J and J. Ifri,rg € I and sj, s2 € J, 
then (71 + 51) + (ro + 82) = ("1 + r2) + (S51 + $2) isin J+J. Forae R, 
a(r, + $1) = ar, +as, € I+ J; hence, J + J is an ideal in R. 


a) No. 


( 

(>). a=b=> (aAJD')V (a Ab) = (ada) V (a Aa) =OVO=O. 

(<=). (aA) V(a' Ab) =O > aVb = (aVa)Vb = aV (aVb) = aV[IA(avb)] = 
aV |(aVa')A(aVb)] = [av (aAb’)|V [av (a'Ab)] = aV[(aAb')V (a'Ab)] = aV0 = a. 
A symmetric argument shows that a V b= 


19. 
21. 


Chapter 20. Vector Spaces 
3. Q(Vv2, V3) has basis {1, V/2, V3, V6} over Q. 
5; Py has basia {tae jn fy, 


7. (a) Subspace of dimension 2 with basis {(1,0,—3), (0,1, 2)}. 
(d) Not a subspace. 


10. 0=a0 =a(-v+v) = a(-v) +av > —av = a(-v). 


12. Let vp = 0,01,.--,Un € V and ap £ 0,a01,...,Qn € F. Then agvg +--+ + 
AnUn = 0. 


15. (a) Let u,v € ker(T) and a € F. Then 


T(ut+tv) =T(u) + 


) 
T(av) = aT(v) = 


Tv 
ad 
Hence, u + v,av € ker(T’) = ker(T) is a subspace of V. 
(c) T(u) =T(v) & T(u- v) = T(u) -—T(v) =0Su-v=08u=v. 
17. (a) Let u,u’ € U and u,v’ € V. Then 


(u+v)+(u'+v') =(u+wv)+(v+v') eU+V 
a(u+v)=au+taveUu+t+y. 


Chapter 21. Fields 


1. (a) at — 2a? — ©. (c) xt — Qu? + 25. 
2. (a) {1, V2, V3, V6}. (c) {1,4, V2, V2}. (e) {1, 21/8, 21/3, 21/2, 02/3, 25/6), 
3. (a) Q(Vv3, v7). 
5 


. Use the fact that the elements of Z2[x]/(z? +a +1) are 0, 1, a, 1+a, a?, 
1+a?,a+a7,1+a+a? and the fact that a? +a+1=0. 
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22. 


27. 
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. False. 
. Suppose that FE is algebraic over F and K is algebraic over E. Let a € 


kK. It suffices to show that a is algebraic over some finite extension of 
F. Since a is algebraic over E, it must be the zero of some polynomial 
p(x) = Po + Pya+---+ 8,2" in E[a]. Hence a is algebraic over F'({,..., Gn). 


Q(V3, V7) D Q(V3 + V7) since {1, V3, V7, V21} is a basis for Q(V/3, V7) 
over Q. Since [Q(V3, V7) : Q| = 4, [(Q(V3 + V7) : Q| = 2 or 4. Since the 
degree of the minimal polynomial of V3+ v7 is 4, Q(V3, V7) = Q(V3+ v7). 


Let 8 € F(a) not in F. Then 6 = p(a)/q(a), where p and q are polynomials in 
a with q(a) 4 0 and coefficients in F’. If 8 is algebraic over F’, then there exists 
a polynomial f(x) € Fa] such that f(8) = 0. Let f(x) = agp +aia+-+-+anx”. 


Then 
vse) oan (Be) (8) 


Now multiply both sides by g(a)" to show that there is a polynomial in F'[2] 
that has @ as a zero. 


Chapter 22. Finite Fields 


1. 
4, 


24. 


(a) 2. (c) 2. 


There are eight elements in Z2(a). Exhibit two more zeros of x? + 2? +1 
other than a in these eight elements. 


. Find an irreducible polynomial p(x) in Zs3|a] of degree 3 and show that 


Z3\|x]/(p(x)) has 27 elements. 


. (a) 8 —1=(24+1)(24 +23 +0?+4¢+41). 


(c) 2? —1=(2+4+1)(2? 4 Ey 1)(x® + 2? +1). 


. True. 

. (a) Use the fact that 27 —1 = (4 +1)(23 + 4+1)(23 + 2? +1). 
. False. 

. If p(x) € F[z], then p(x) € Efa]. 


. Since a is algebraic over F' of degree n, we can write any element (6 € F(a) 


uniquely as 8 = ag tayat-+:+an_1a"~! with a; € F. There are q” possible 
n-tuples (ao, @1,.--,;@n—1)- 


Factor x?—' — 1 over Zy. 
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Chapter 23. Galois Theory 


Le 
2s 
3. 


(a) Zo. (c) Ly x Ly x ZL. 


(a) Separable. (c) Not separable. 

[GF(729) : GF(9)] = [GF(729) : GF(3)]/[GF(9) : GF(3)] = 6/2 = 3 > 
G(GF(729)/GF(9)) = Z3. A generator for G(GF(729)/GF(9)) is 0, where 
o36(a) =a® =a" for a € GF(729). 


2 Ih 


: (a) Ss. (c) S'3. 
- (a) Qt). 
. Let E be the splitting field of a cubic polynomial in F'[a]. Show that [EF : F] 


is less than or equal to 6 and is divisible by 3. Since G(E/F) is a subgroup of 
S3 whose order is divisible by 3, conclude that this group must be isomorphic 
to Z3 or S3. 


. Gis a subgroup of S,. 
16. 
20. 


True. 

(a) Clearly w,w?,...,w?~! are distinct since w #1 or 0. To show that w* is 
a zero of ®,, calculate ®,(w’). 

(b) The conjugates of w are w,w?,...,w?~. Define a map ¢; : Q(w) > Q(w*) 
by 


bi(ag + aw +--+ + Ap—2w?~*) = ag + ayw? + +++ + ep—2(wt)P?, 


where a; € Q. Prove that ¢; is an isomorphism of fields. Show that 2 


generates G(Q(w)/Q). 
(c) Show that {w,w?,...,w?-!} is a basis for Q(w) over Q, and consider 
which linear combinations of w,w?,...,w?~! are left fixed by all elements of 


G(Qw@)/Q. 


GNU Free Documentation License 


Version 1.2, November 2002 
Copyright 2000,2001,2002 Free Software Foundation, Inc. 


51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA 


Everyone is permitted to copy and distribute verbatim copies of this license 
document, but changing it is not allowed. 


Preamble 


The purpose of this License is to make a manual, textbook, or other functional 
and useful document “free” in the sense of freedom: to assure everyone the effective 
freedom to copy and redistribute it, with or without modifying it, either commercially 
or noncommercially. Secondarily, this License preserves for the author and publisher 
a way to get credit for their work, while not being considered responsible for 
modifications made by others. 

This License is a kind of “copyleft”, which means that derivative works of the 
document must themselves be free in the same sense. It complements the GNU 
General Public License, which is a copyleft license designed for free software. 

We have designed this License in order to use it for manuals for free software, 
because free software needs free documentation: a free program should come with 
manuals providing the same freedoms that the software does. But this License is 
not limited to software manuals; it can be used for any textual work, regardless of 
subject matter or whether it is published as a printed book. We recommend this 
License principally for works whose purpose is instruction or reference. 


1. Applicability And Definitions 


This License applies to any manual or other work, in any medium, that contains a 
notice placed by the copyright holder saying it can be distributed under the terms 
of this License. Such a notice grants a world-wide, royalty-free license, unlimited in 
duration, to use that work under the conditions stated herein. The “Document” , 
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below, refers to any such manual or work. Any member of the public is a licensee, 
and is addressed as “you”. You accept the license if you copy, modify or distribute 
the work in a way requiring permission under copyright law. 

A “Modified Version” of the Document means any work containing the 
Document or a portion of it, either copied verbatim, or with modifications and/or 
translated into another language. 

A “Secondary Section” is a named appendix or a front-matter section of the 
Document that deals exclusively with the relationship of the publishers or authors of 
the Document to the Document’s overall subject (or to related matters) and contains 
nothing that could fall directly within that overall subject. (Thus, if the Document 
is in part a textbook of mathematics, a Secondary Section may not explain any 
mathematics.) The relationship could be a matter of historical connection with the 
subject or with related matters, or of legal, commercial, philosophical, ethical or 
political position regarding them. 

The “Invariant Sections” are certain Secondary Sections whose titles are 
designated, as being those of Invariant Sections, in the notice that says that the 
Document is released under this License. If a section does not fit the above definition 
of Secondary then it is not allowed to be designated as Invariant. The Document 
may contain zero Invariant Sections. If the Document does not identify any Invariant 
Sections then there are none. 

The “Cover Texts” are certain short passages of text that are listed, as Front- 
Cover Texts or Back-Cover Texts, in the notice that says that the Document is 
released under this License. A Front-Cover Text may be at most 5 words, and a 
Back-Cover Text may be at most 25 words. 

A “Transparent” copy of the Document means a machine-readable copy, 
represented in a format whose specification is available to the general public, that is 
suitable for revising the document straightforwardly with generic text editors or (for 
images composed of pixels) generic paint programs or (for drawings) some widely 
available drawing editor, and that is suitable for input to text formatters or for 
automatic translation to a variety of formats suitable for input to text formatters. 
A copy made in an otherwise Transparent file format whose markup, or absence 
of markup, has been arranged to thwart or discourage subsequent modification by 
readers is not Transparent. An image format is not Transparent if used for any 
substantial amount of text. A copy that is not “Transparent” is called “Opaque”. 

Examples of suitable formats for Transparent copies include plain ASCII without 
markup, Texinfo input format, LaTeX input format, SGML or XML using a publicly 
available DTD, and standard-conforming simple HTML, PostScript or PDF designed 
for human modification. Examples of transparent image formats include PNG, XCF 
and JPG. Opaque formats include proprietary formats that can be read and edited 
only by proprietary word processors, SGML or XML for which the DTD and/or 
processing tools are not generally available, and the machine-generated HTML, 
PostScript or PDF produced by some word processors for output purposes only. 

The “Title Page” means, for a printed book, the title page itself, plus such 
following pages as are needed to hold, legibly, the material this License requires to 
appear in the title page. For works in formats which do not have any title page 
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as such, “Title Page” means the text near the most prominent appearance of the 
work’s title, preceding the beginning of the body of the text. 

A section “Entitled XYZ” means a named subunit of the Document whose title 
either is precisely XYZ or contains XYZ in parentheses following text that translates 
XYZ in another language. (Here XYZ stands for a specific section name mentioned 
below, such as “Acknowledgements”, “Dedications”, “Endorsements”, or 
“History”.) To “Preserve the Title” of such a section when you modify the 
Document means that it remains a section “Entitled XYZ” according to this 
definition. 

The Document may include Warranty Disclaimers next to the notice which 
states that this License applies to the Document. These Warranty Disclaimers 
are considered to be included by reference in this License, but only as regards 
disclaiming warranties: any other implication that these Warranty Disclaimers may 
have is void and has no effect on the meaning of this License. 


2. Verbatim Copying 


You may copy and distribute the Document in any medium, either commercially or 
noncommercially, provided that this License, the copyright notices, and the license 
notice saying this License applies to the Document are reproduced in all copies, and 
that you add no other conditions whatsoever to those of this License. You may not 
use technical measures to obstruct or control the reading or further copying of the 
copies you make or distribute. However, you may accept compensation in exchange 
for copies. If you distribute a large enough number of copies you must also follow 
the conditions in section 3. 

You may also lend copies, under the same conditions stated above, and you may 
publicly display copies. 


3. Copying In Quantity 


If you publish printed copies (or copies in media that commonly have printed covers) 
of the Document, numbering more than 100, and the Document’s license notice 
requires Cover Texts, you must enclose the copies in covers that carry, clearly and 
legibly, all these Cover Texts: Front-Cover Texts on the front cover, and Back-Cover 
Texts on the back cover. Both covers must also clearly and legibly identify you as 
the publisher of these copies. The front cover must present the full title with all 
words of the title equally prominent and visible. You may add other material on 
the covers in addition. Copying with changes limited to the covers, as long as they 
preserve the title of the Document and satisfy these conditions, can be treated as 
verbatim copying in other respects. 

If the required texts for either cover are too voluminous to fit legibly, you should 
put the first ones listed (as many as fit reasonably) on the actual cover, and continue 
the rest onto adjacent pages. 
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If you publish or distribute Opaque copies of the Document numbering more 
than 100, you must either include a machine-readable Transparent copy along 
with each Opaque copy, or state in or with each Opaque copy a computer-network 
location from which the general network-using public has access to download using 
public-standard network protocols a complete Transparent copy of the Document, 
free of added material. If you use the latter option, you must take reasonably 
prudent steps, when you begin distribution of Opaque copies in quantity, to ensure 
that this Transparent copy will remain thus accessible at the stated location until 
at least one year after the last time you distribute an Opaque copy (directly or 
through your agents or retailers) of that edition to the public. 

It is requested, but not required, that you contact the authors of the Document 
well before redistributing any large number of copies, to give them a chance to 
provide you with an updated version of the Document. 


4. Modifications 


You may copy and distribute a Modified Version of the Document under the 
conditions of sections 2 and 3 above, provided that you release the Modified Version 
under precisely this License, with the Modified Version filling the role of the 
Document, thus licensing distribution and modification of the Modified Version 
to whoever possesses a copy of it. In addition, you must do these things in the 
Modified Version: 


A. Use in the Title Page (and on the covers, if any) a title distinct from that of 
the Document, and from those of previous versions (which should, if there 
were any, be listed in the History section of the Document). You may use the 
same title as a previous version if the original publisher of that version gives 
permission. 


B. List on the Title Page, as authors, one or more persons or entities responsible 
for authorship of the modifications in the Modified Version, together with at 
least five of the principal authors of the Document (all of its principal authors, 
if it has fewer than five), unless they release you from this requirement. 


C. State on the Title page the name of the publisher of the Modified Version, as 
the publisher. 


D. Preserve all the copyright notices of the Document. 


E. Add an appropriate copyright notice for your modifications adjacent to the 
other copyright notices. 


F. Include, immediately after the copyright notices, a license notice giving the 
public permission to use the Modified Version under the terms of this License, 
in the form shown in the Addendum below. 


G. Preserve in that license notice the full lists of Invariant Sections and required 
Cover Texts given in the Document’s license notice. 
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H. Include an unaltered copy of this License. 


I. Preserve the section Entitled “History”, Preserve its Title, and add to it an 
item stating at least the title, year, new authors, and publisher of the Modified 
Version as given on the Title Page. If there is no section Entitled “History’ 
in the Document, create one stating the title, year, authors, and publisher of 
the Document as given on its Title Page, then add an item describing the 
Modified Version as stated in the previous sentence. 


») 


J. Preserve the network location, if any, given in the Document for public access 
to a Transparent copy of the Document, and likewise the network locations 
given in the Document for previous versions it was based on. These may be 
placed in the “History” section. You may omit a network location for a work 
that was published at least four years before the Document itself, or if the 
original publisher of the version it refers to gives permission. 


Kk. For any section Entitled “Acknowledgements” or “Dedications”, Preserve the 
Title of the section, and preserve in the section all the substance and tone of 
each of the contributor acknowledgements and/or dedications given therein. 


L. Preserve all the Invariant Sections of the Document, unaltered in their text 
and in their titles. Section numbers or the equivalent are not considered part 
of the section titles. 


M. Delete any section Entitled “Endorsements”. Such a section may not be 
included in the Modified Version. 


N. Do not retitle any existing section to be Entitled “Endorsements” or to conflict 
in title with any Invariant Section. 


O. Preserve any Warranty Disclaimers. 


If the Modified Version includes new front-matter sections or appendices that 
qualify as Secondary Sections and contain no material copied from the Document, 
you may at your option designate some or all of these sections as invariant. To do 
this, add their titles to the list of Invariant Sections in the Modified Version’s license 
notice. These titles must be distinct from any other section titles. 

You may add a section Entitled “Endorsements” , provided it contains nothing but 
endorsements of your Modified Version by various parties—-for example, statements of 
peer review or that the text has been approved by an organization as the authoritative 
definition of a standard. 

You may add a passage of up to five words as a Front-Cover Text, and a passage 
of up to 25 words as a Back-Cover Text, to the end of the list of Cover Texts in the 
Modified Version. Only one passage of Front-Cover Text and one of Back-Cover 
Text may be added by (or through arrangements made by) any one entity. If the 
Document already includes a cover text for the same cover, previously added by 
you or by arrangement made by the same entity you are acting on behalf of, you 
may not add another; but you may replace the old one, on explicit permission from 
the previous publisher that added the old one. 
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The author(s) and publisher(s) of the Document do not by this License give 
permission to use their names for publicity for or to assert or imply endorsement of 
any Modified Version. 


5. Combining Documents 


You may combine the Document with other documents released under this License, 
under the terms defined in section 4 above for modified versions, provided that 
you include in the combination all of the Invariant Sections of all of the original 
documents, unmodified, and list them all as Invariant Sections of your combined 
work in its license notice, and that you preserve all their Warranty Disclaimers. 

The combined work need only contain one copy of this License, and multiple 
identical Invariant Sections may be replaced with a single copy. If there are multiple 
Invariant Sections with the same name but different contents, make the title of 
each such section unique by adding at the end of it, in parentheses, the name of 
the original author or publisher of that section if known, or else a unique number. 
Make the same adjustment to the section titles in the list of Invariant Sections in 
the license notice of the combined work. 

In the combination, you must combine any sections Entitled “History” in the 
various original documents, forming one section Entitled “History”; likewise combine 
any sections Entitled “Acknowledgements”, and any sections Entitled “Dedications”. 
You must delete all sections Entitled “Endorsements” . 


6. Collections Of Documents 


You may make a collection consisting of the Document and other documents released 
under this License, and replace the individual copies of this License in the various 
documents with a single copy that is included in the collection, provided that you 
follow the rules of this License for verbatim copying of each of the documents in all 
other respects. 

You may extract a single document from such a collection, and distribute it 
individually under this License, provided you insert a copy of this License into the 
extracted document, and follow this License in all other respects regarding verbatim 
copying of that document. 


7. Aggregation With Independent Works 


A compilation of the Document or its derivatives with other separate and independent 
documents or works, in or on a volume of a storage or distribution medium, is called 
an “aggregate” if the copyright resulting from the compilation is not used to limit 
the legal rights of the compilation’s users beyond what the individual works permit. 
When the Document is included in an aggregate, this License does not apply to 
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the other works in the aggregate which are not themselves derivative works of the 
Document. 

If the Cover Text requirement of section 3 is applicable to these copies of the 
Document, then if the Document is less than one half of the entire aggregate, 
the Document’s Cover Texts may be placed on covers that bracket the Document 
within the aggregate, or the electronic equivalent of covers if the Document is in 
electronic form. Otherwise they must appear on printed covers that bracket the 
whole aggregate. 


8. Translation 


Translation is considered a kind of modification, so you may distribute translations 
of the Document under the terms of section 4. Replacing Invariant Sections with 
translations requires special permission from their copyright holders, but you may 
include translations of some or all Invariant Sections in addition to the original 
versions of these Invariant Sections. You may include a translation of this License, 
and all the license notices in the Document, and any Warranty Disclaimers, provided 
that you also include the original English version of this License and the original 
versions of those notices and disclaimers. In case of a disagreement between the 
translation and the original version of this License or a notice or disclaimer, the 
original version will prevail. 

If a section in the Document is Entitled “Acknowledgements”, “Dedications”, or 
“History”, the requirement (section 4) to Preserve its Title (section 1) will typically 
require changing the actual title. 


9. Termination 


You may not copy, modify, sublicense, or distribute the Document except as expressly 
provided for under this License. Any other attempt to copy, modify, sublicense or 
distribute the Document is void, and will automatically terminate your rights under 
this License. However, parties who have received copies, or rights, from you under 
this License will not have their licenses terminated so long as such parties remain in 
full compliance. 


10. Future Revisions Of This License 


The Free Software Foundation may publish new, revised versions of the GNU Free 
Documentation License from time to time. Such new versions will be similar in 
spirit to the present version, but may differ in detail to address new problems or 
concerns. See http://www.gnu.org/copyleft /. 

Each version of the License is given a distinguishing version number. If the 
Document specifies that a particular numbered version of this License “or any later 
version” applies to it, you have the option of following the terms and conditions 
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either of that specified version or of any later version that has been published (not 
as a draft) by the Free Software Foundation. If the Document does not specify a 
version number of this License, you may choose any version ever published (not as 
a draft) by the Free Software Foundation. 


Addendum: How to use this License for your docu- 
ments 


To use this License in a document you have written, include a copy of the License 
in the document and put the following copyright and license notices just after the 
title page: 


Copyright YEAR YOUR NAME. Permission is granted to copy, dis- 
tribute and/or modify this document under the terms of the GNU Free 
Documentation License, Version 1.2 or any later version published by 
the Free Software Foundation; with no Invariant Sections, no Front- 
Cover Texts, and no Back-Cover Texts. A copy of the license is included 
in the section entitled “GNU Free Documentation License”. 


If you have Invariant Sections, Front-Cover Texts and Back-Cover Texts, replace 
the “with ... Texts.” line with this: 


with the Invariant Sections being LIST THEIR TITLES, with the 
Front-Cover Texts being LIST, and with the Back-Cover Texts being 
LIST. 


If you have Invariant Sections without Cover Texts, or some other combination 
of the three, merge those two alternatives to suit the situation. 

If your document contains nontrivial examples of program code, we recommend 
releasing these examples in parallel under your choice of free software license, such 
as the GNU General Public License, to permit their use in free software. 


Notation 


The following table defines the notation used in this book. Page numbers 
refer to the first appearance of each symbol. 


Symbol Description Page 
acA a is in the set A 4 
N the natural numbers 5 
Z, the integers 9) 
Q the rational numbers 5 
R the real numbers i) 
C the complex numbers 5 
ACB A is a subset of B 5 
) the empty set i] 
AUB union of sets A and B & 
ANB intersection of sets A and B 5 
A’ complement of the set A 6 
A\B difference between sets A and B 6 
AxB Cartesian product of sets A and B 8 
A” Ax.-+-:x A (n times) 8 
id identity mapping ib 
‘ie inverse of the function f 13 
a=b(modn) — ais congruent to b modulo n 17 
n! n factorial 25 
( ) binomial coefficient n!/(k!(n — k)!) 25 
m|n m divides n 27 
gcd(m, n) greatest common divisor of m and n 28 
P(X) power set of X oe 
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NOTATION 


Symbol 


Description 


the integers modulo n 

least common multiple of m and n 
group of units in Z, 

the n x n matrices with entries in R 
determinant of A 

general linear group 

the group of quaternions 

the multiplicative group of complex numbers 
order of a group G 

the multiplicative group of real numbers 
the multiplicative group of rational numbers 
special linear group 

center of a group G 

cyclic subgroup generated by a 

order of an element a 

cos 6 + isin 6 

the circle group 

symmetric group on n letters 

cycle of length k 

alternating group on n letters 

dihedral group 

index of a subgroup H in a group G 

set of left cosets of H in a group G 

set of right cosets of H in a group G 
Hamming distance between x and y 
minimum distance of a code 

weight of x 

set of m by n matrices with entries in Zo 
null space of a matrix H 

Kronecker delta 

G is isomorphic to H 

automorphism group of G 

ig(x) = gag * 

inner automorphism group of G 

right regular representation 

factor group of G mod N 

kernel of @ 

commutator subgroup of G 
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Page 


37 
34 
4A 
45 
45 
45 
46 
46 
46 
AQ 
AQ 
A9 
55 
60 
60 
65 
67 
77 
fe: 
83 
85 
96 
96 
96 
121 
1271 
121 
127 
127 
131 
144 
156 
156 
156 
157 
160 
I¥i 
168 


NOTATION 


Description 


matrix 

orthogonal group 

length of a vector x 

special orthogonal group 

Euclidean group 

orbit of x 

fixed point set of g 

isotropy subgroup of x 

set of fixed points in a G-set X 
normalizer of a subgroup H 

the ring of quaternions 

characteristic of a ring R 

the Gaussian integers 

ring of integers localized at p 

ring of polynomials over R 

degree of p(x) 

ring of polynomials in n variables 
evaluation homomorphism at @ 

field of rational functions over Q 
Euclidean valuation of a 

field of rational functions in x 

field of rational functions in 71,...,2% 
a is less than b 

meet of a and b 

join of a and 6 

largest element in a lattice 

smallest element in a lattice 
complement of a in a lattice 
dimension of a vector space V 

direct sum of vector spaces U and V 
set of all linear transformations from U to V 
dual of a vector space V 

smallest field containing F’ and aj,...,Qn 
dimension of a field extension of E over F' 
Galois field of order p” 

multiplicative group of a field F 
Galois group of EF over F 

field fixed by automorphisms o; 


Page 


180 
183 
184 
187 
187 
215 
215 
215 
217 
233 
245 
249 
248 
265 
269 
269 
272 
272 
pas Ps 
Zur 
303 
303 
307 
309 
309 
311 
311 
311 
329 
332 
332 
332 
337 
340 
361 
361 
377 
382 
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Symbol Description Page 


Fe field fixed by automorphism group G 382 
A? discriminant of a polynomial 398 


Index 


G-equivalence classes, 227 
G-equivalent, 215 

G-set, 213 

nth root of unity, 67, 390 


Abel, Niels Henrik, 388 
Abelian group, 43 
Ackermann’s function, 35 
Adleman, L., 107 
Algebraic closure, 344 
Algebraic extension, 337 
Algebraic number, 337 
Algorithm 

division, 273 

Euclidean, 30 
Artin, Emil, 304 
Ascending chain condition, 295 
Associate elements, 293 
Atom, 315 
Automorphism 

inner, 156, 177 

of a group, 156 


Basis of a lattice, 192 
Bieberbach, L., 196 
Binary operation, 42 
Binary symmetric channel, 119 
Boole, George, 320 
Boolean algebra 

atom in a, 315 

definition of, 312 

finite, 314 

isomorphism, 314 


Boolean function, 224, 323 
Boolean ring, 265 


Burnside’s Counting Theorem, 220 


Burnside, William, 48, 166, 227 


Cancellation law 

for groups, 47 

for integral domains, 248 
Cardano, Gerolamo, 282 
Carmichael numbers, 113 
Cauchy’s Theorem, 231 
Cauchy, Augustin-Louis, 85 
Cayley table, 44 
Cayley’s Theorem, 148 
Cayley, Arthur, 149 
Center 

of a group, 55 

of a ring, 265 
Centralizer, 55 

of a subgroup, 217 

of an element, 167 
Characteristic of a ring, 249 
Chinese Remainder Theorem 

for integers, 258 

for rings, 266 
Cipher, 103 
Ciphertext, 103 
Circuit 

parallel, 318 

series, 317 

series-parallel, 318 
Class equation, 217 
Code 
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INDEX 


BCH, 371 
cyclic, 363 
dual, 142 
group, 124 
Hamming 
definition of, 142 
perfect, 143 
shortened, 143 
linear, 127 
minimum distance of, 121 
polynomial, 364 
Commutative diagrams, 173 
Commutative rings, 244 
Composite integer, 30 
Composition series, 206 
Congruence modulo n, 17 
Conjugacy classes, 217 
Conjugate elements, 378 
Conjugate fields, 397 
Conjugate permutations, 101 
Conjugate, complex, 64 
Conjugation, 214 
Constructible number, 349 
Correspondence Theorem 
for groups, 174 
for rings, 254 
Coset 
double, 101 
leader, 137 
left, 94 
representative, 94 
right, 94 
Coset decoding, 136 
Cryptanalysis, 104 
Cryptosystem 
affine, 105 
definition of, 103 
monoalphabetic, 105 
polyalphabetic, 106 
private key, 104 
public key, 103 
RSA, 107 
single key, 104 
Cycle 
definition of, 78 


disjoint, 79 


De Morgan’s laws 
for Boolean algebras, 314 
for sets, 7 
De Morgan, Augustus, 320 
Decoding table, 137 
Deligne, Pierre, 354 
DeMoivre’s Theorem, 66 
Derivative, 285, 360 
Derived series, 210 
Descending chain condition, 304 
Determinant, Vandermonde, 368 
Dickson, L. E., 166 
Diffie, W., 107 
Direct product of groups 
external, 150 
internal, 153 
Direct sum of vector spaces, 332 
Discriminant 
of a separable polynomial, 398 
of the cubic equation, 286 
of the quadratic equation, 285 
Division algorithm 
for integers, 27 
for polynomials, 273 
Division ring, 244 
Domain 
Euclidean, 297 
principal ideal, 294 
unique factorization, 293 
Doubling the cube, 353 


Eisenstein’s Criterion, 280 

Element 
associate, 293 
centralizer of, 167 
idempotent, 266 
identity, 43 
inverse, 43 
irreducible, 293 
nilpotent, 265 
order of, 60 
prime, 293 
primitive, 381 
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transcendental, 337 
Equivalence class, 16 
Equivalence relation, 15 
Euclidean algorithm, 30 
Euclidean domain, 297 
Euclidean group, 187 
Euclidean inner product, 184 
Euclidean valuation, 297 
Euler ¢-function, 99 
Euler, Leonhard, 100, 354 
Extension 

algebraic, 337 

field, 334 

finite, 340 

normal, 384 

radical, 390 

separable, 360, 381 

simple, 337 
External direct product, 150 


Faltings, Gerd, 354 
Feit, W., 166, 227 
Fermat’s factorization algorithm, 112 
Fermat’s Little Theorem, 99 
Fermat, Pierre de, 99, 354 
Ferrari, Ludovico, 282 
Ferro, Scipione del, 282 
Field, 244 
algebraically closed, 344 
base, 334 
conjugate, 397 
extension, 334 
fixed, 383 
Galois, 361 
of fractions, 291 
of quotients, 291 
prime, 303 
splitting, 345 
Finitely generated group, 201 
Fior, Antonio, 282 
First Isomorphism Theorem 
for groups, 172 
for rings, 254 
Fixed point set, 215 
Freshman’s Dream, 359 


INDEX 


Frobenius map, 373 
Function 
bijective, 10 
Boolean, 224, 323 
composition of, 10 
definition of, 8 
domain of, 9 
identity, 12 
injective, 10 
invertible, 13 
one-to-one, 10 
onto, 10 
order-preserving, 322 
range of, 9 
surjective, 10 
switching, 224, 323 
Fundamental Theorem 
of Algebra, 345, 395 
of Arithmetic, 30 
of Finite Abelian Groups, 203 
of Galois Theory, 385 


Godel, Kurt, 320 
Galois field, 361 
Galois group, 377 
Galois, Evariste, 48, 389 
Gauss’s Lemma, 299 
Gauss, Karl Friedrich, 301 
Gaussian integers, 248 
Generator of a cyclic subgroup, 60 
Generators for a group, 201 
Glide reflection, 188 
Gorenstein, Daniel, 166 
Greatest common divisor 

of elements in a UFD, 304 

of two integers, 27 

of two polynomials, 275 
Greatest lower bound, 308 
Greiss, R., 166 
Grothendieck, A., 354 
Group 

p-group, 202, 231 

abelian, 43 

action, 213 

alternating, 83 


INDEX 


automorphism of, 156 
center of, 92, 167, 217 
circle, 67 
commutative, 43 
cyclic, 60 

definition of, 42 
dihedral, 85 
Euclidean, 187 

factor, 160 

finite, 46 

finitely generated, 201 
Galois, 377 

general linear, 45, 182 
generators of, 201 
Heisenberg, 53 
homomorphism of, 169 
infinite, 46 
isomorphic, 144 
isomorphism of, 144 
nonabelian, 43 
noncommutative, 43 
of units, 44 

order of, 46 
orthogonal, 183 
permutation, 77 
point, 193 
quaternion, 46 
quotient, 160 

simple, 162, 166 
solvable, 209 

space, 193 

special linear, 50, 182 
special orthogonal, 187 
symmetric, 77 
symmetry, 190 
torsion, 210 


Hamming distance, 121 
Hamming, R., 124 


kernel of a group, 171 
kernel of a ring, 250 
lattice, 322 

natural, 172, 253 

of groups, 169 

ring, 250 


Ideal 

definition of, 251 

maximal, 255 

one-sided, 253 

prime, 255 

principal, 252 

trivial, 251 

two-sided, 253 
Idempotent, 266 
Indeterminate, 269 
Index of a subgroup, 96 
Induction 

first principle of, 24 

second principle of, 25 
Infimum, 308 
Inner product, 126 
Integral domain, 244 
Internal direct product, 153 
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International standard book number, 57 


Irreducible element, 293 
Irreducible polynomial, 277 
Isometry, 188 
Isomorphism 
of Boolean algebras, 314 
of groups, 144 
ring, 250 


Join, 309 
Jordan, C., 166 
Jordan-Holder Theorem, 207 


Kernel 


of a group homomorphism, 171 

of a linear transformation, 331 

of a ring homomorphism, 250 
Key 

definition of, 103 

private, 104 


Hellman, M., 107 
Hilbert, David, 196, 256, 320, 354 
Homomorphic image, 169 
Homomorphism 
canonical, 172, 253 
evaluation, 251, 272 
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public, 103 

single, 104 
Klein, Felix, 48, 179, 256 
Kronecker delta, 131, 185 
Kronecker, Leopold, 354 
Kummer, Ernst, 354 


Lagrange’s Theorem, 97 
Lagrange, Joseph-Louis, 48, 85, 100 
Laplace, Pierre-Simon, 85 
Lattice 
completed, 311 
definition of, 309 
distributive, 311 
homomorphism, 322 
Lattice of points, 192 
Lattices, Principle of Duality for, 309 
Least upper bound, 308 
Left regular representation, 149 
Lie, Sophus, 48, 235 
Linear combination, 327 
Linear dependence, 327 
Linear functionals, 332 
Linear independence, 327 
Linear map, 179 
Linear transformation 
definition of, 11, 179, 331 
kernel of, 331 
null space of, 331 
range of, 331 
Lower bound, 308 


Mapping, see Function 
Matrix 
distance-preserving, 185 
generator, 128 
inner product-preserving, 185 
invertible, 181 
length-preserving, 185 
nonsingular, 181 
null space of, 127 
orthogonal, 183 
parity-check, 128 
similar, 16 
unimodular, 193 


INDEX 


Matrix, Vandermonde, 368 
Maximal ideal, 255 
Maximum-likelihood decoding, 119 
Meet, 309 

Metric, 141 

Minimal generator polynomial, 366 
Minimal polynomial, 338 
Minkowski, Hermann, 354 

Monic polynomial, 269 
Mordell-Weil conjecture, 354 
Multiplicative subset, 304 
Multiplicity of a root, 381 


Nilpotent element, 265 

Noether, A. Emmy, 256 

Noether, Max, 256 

Normal extension, 384 

Normal series of a group, 205 
Normal subgroup, 159 

Normalizer, 233 

Null space 

of a linear transformation, 331 
of a matrix, 127 


Odd Order Theorem, 239 
Orbit, 92, 215 
Orthogonal group, 183 
Orthogonal matrix, 183 
Orthonormal set, 185 


Partial order, 306 
Partially ordered set, 307 
Partitions, 16 
Permutation 

conjugate, 101 

definition of, 12, 76 

even, 83 

odd, 83 
Permutation group, 77 
Plaintext, 103 
Polynomial 

code, 364 

content of, 299 

cyclotomic, 284 

definition of, 269 


INDEX 


degree of, 269 
error, 374 
error-locator, 375 
greatest common divisor of, 275 
in n indeterminates, 272 
irreducible, 277 
leading coefficient of, 269 
minimal, 338 
minimal generator, 366 
monic, 269 
primitive, 299 
root of, 274 
separable, 381 
zero of, 274 
Polynomial separable, 359 
Poset 
definition of, 307 
largest element in, 311 
smallest element in, 311 
Power set, 33, 307 
Prime element, 293 
Prime field, 303 
Prime ideal, 255 
Prime integer, 30 
Prime subfield, 303 
Primitive nth root of unity, 68, 391 
Primitive element, 381 
Primitive Element Theorem, 381 
Primitive polynomial, 299 
Principal ideal, 252 
Principal ideal domain (PID), 294 
Principal series, 206 
Pseudoprime, 113 


Quaternions, 46, 246 


Repeated squares, 68 
Resolvent cubic equation, 287 
Right regular representation, 157 
Rigid motion, 40, 188 
Ring 

Artinian, 304 

Boolean, 265 

center of, 265 

characteristic of, 249 


commutative, 244 
definition of, 243 
division, 244 
factor, 253 
finitely generated, 304 
homomorphism, 250 
isomorphism, 250 
local, 305 
Noetherian, 295 
of integers localized at p, 265 
of quotients, 305 
quotient, 253 
with identity, 244 
with unity, 244 
Rivest, R., 107 
RSA cryptosystem, 107 
Ruffini, P., 388 
Russell, Bertrand, 320 


Scalar product, 324 
Schreier’s Theorem, 211 
Second Isomorphism Theorem 
for groups, 174 
for rings, 254 
Semidirect product, 198 
Shamir, A., 107 
Shannon, C., 123 
Sieve of Eratosthenes, 35 
Simple extension, 337 
Simple group, 162 
Simple root, 381 
Solvability by radicals, 390 
Spanning set, 327 
Splitting field, 345 
Squaring the circle, 353 
Standard decoding, 136 
Subfield 
prime, 303 
Subgroup 
p-subgroup, 231 
centralizer, 217 
commutator, 168, 210, 237 
cyclic, 60 
definition of, 49 
index of, 96 
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432 


isotropy, 215 
normal, 159 
normalizer of, 233 
proper, 49 
stabilizer, 215 
Sylow p-subgroup, 233 
torsion, 73 
transitive, 92 
translation, 193 
trivial, 49 
Subnormal series of a group, 205 
Subring, 247 
Supremum, 308 
Switch 
closed, 317 
definition of, 317 
open, 317 
Switching function, 224, 323 
Sylow p-subgroup, 233 
Sylow, Ludvig, 235 
Syndrome of a code, 135, 374 


Tartaglia, 282 
Third Isomorphism Theorem 
for groups, 175 
for rings, 254 
Thompson, J., 166, 227 
Totally ordered set, 322 
Transcendental element, 337 
Transcendental number, 337 
Transposition, 81 
Trisection of an angle, 353 


Unique factorization domain (UFD), 293 
Unit, 244, 293 

Universal Product Code, 56 

Upper bound, 308 


Vandermonde determinant, 368 
Vandermonde matrix, 368 
Vector space 

basis of, 329 

definition of, 324 

dimension of, 329 

direct sum of, 332 


INDEX 


dual of, 332 
subspace of, 326 


Weight of a codeword, 121 
Weil, André, 354 
Well-defined map, 10 
Well-ordered set, 26 
Whitehead, Alfred North, 320 
Wilson’s Theorem, 373 


Zassenhaus Lemma, 211 
Zero 
multiplicity of, 381 
of a polynomial, 274 
Zero divisor, 245 


